17 matches found
Microsoft SDL: Evolving security practices for an AI-powered world
As AI reshapes the world, organizations encounter unprecedented risks, and security leaders take on new responsibilities. Microsoft’s Secure Development Lifecycle SDL is expanding to address AI-specific security concerns in addition to the traditional software security areas that it has...
Microsoft SDL: Evolving security practices for an AI-powered world
As AI reshapes the world, organizations encounter unprecedented risks, and security leaders take on new responsibilities. Microsoft’s Secure Development Lifecycle SDL is expanding to address AI-specific security concerns in addition to the traditional software security areas that it has...
Maturing the cyber threat intelligence program
The Cyber Threat Intelligence Capability Maturity Model CTI-CMM helps organizations assess and improve their threat intelligence programs by outlining 11 key areas and specific missions where CTI can support decision-making. The model describes four levels of maturity, guiding teams from basic, a...
Key Takeaways from the Take Command Summit 2025: Risk Revolution – Proactive Strategies for Exposure Management
At the Take Command 2025 Virtual Cybersecurity Summit, a standout session titled Risk Revolution brought together Rapid7 product leaders and ESG analyst Tyler Shields to unpack the evolution of exposure management — and how organizations can build more context-driven, proactive risk strategies...
INE Security Alert: Continuous CVE Practice Closes Critical Gap Between Vulnerability Alerts and Effective Defense
Cary, North Carolina, 14th May 2025, CyberNewsWire...
CISA, US, and International Partners Release Joint Guidance to Assist Software Manufacturers with Safe Software Deployment Processes
Today, CISA—along with U.S. and international partners—released joint guidance, Safe Software Deployment: How Software Manufacturers Can Ensure Reliability for Customers. This guide aids software manufacturers in establishing secure software deployment processes to help ensure software is reliabl...
Cap Dev. Better red teaming with continuous Capability Development
TL;DR What Capability Development Cap Dev is in this context The big Cap Dev benefits for red teaming Operations and Development, sharing and improving Improvements to TTPs, hardware, and developing strategies Benefits of using a DevSecOps model for offensive security The essence of Cap Dev Cap D...
Understanding metrics to measure SOC effectiveness
The security operations center SOC plays a critical role in protecting an organizations assets and reputation by identifying, analyzing, and responding to cyberthreats in a timely and effective manner. Additionally, SOCs also help to improve overall security posture by providing add-on services...
ID&E: Akamai’s Journey of Continuous Improvement
Akamai was founded to give the brightest minds somewhere to grow – and by surrounding ourselves with supportive individuals and an open culture, we can all bring our best, every day. It’s for this reason that our commitment to inclusion, diversity, and engagement is a key cornerstone of how we...
What is DevOps❓ Definition, Advantages, Practices
Introduction Inhabitants of the product world realize that new trendy expressions apparently show up out of the blue, and similarly as abruptly multiply news stories, water cooler chitchat and merchant FAQ areas. In the event that you’ve heard the term DevOps being thrown around, you may believe...
Becoming resilient by understanding cybersecurity risks: Part 4—navigating current threats
In part three of this blog series on aligning security with business objectives and risk, we explored what it takes for security leaders to shift from looking at their mission as purely defending against technical attacks, to one that focuses on protecting valuable business assets, data, and...
Quality is Job One When it Comes to the HITRUST CSF Assurance Program
The HITRUST CSF® remains an essential security and privacy controls framework that addresses the multitude of security, privacy, and regulatory challenges facing both public and private sector organizations. As framework adoption increases across all industries, maintaining integrity is crucial,...
Ancestry: On the Vanguard of DevOps Security
Grant Johnson, Ancestry's Director, Risk & Compliance This is a guest post by Grant Johnson, Director, Risk & Compliance at Ancestry Over the past two years, Ancestry moved its entire applications and data infrastructure from local data centers to Amazon’s cloud, and this required a new approach...
Professional Services Simplified - Check out what's new!
In today's fast-moving digital world, we know businesses need to rapidly adapt to meet user expectations and stay competitive. At Akamai, we see a world of unimagined potential, enabled through the unique power of the Akamai Edge. It's this power, backed by the support of our 2000 global experts,...
Why Our Customers Love the PSC
As the cybersecurity world advances, organizations are starting to embrace cloud-based security platforms. More and more Carbon Black customers are moving to the CB Predictive Security Cloud PSC, an extensible cloud platform that consolidates security and provides you everything needed to secure...
The Eighth Question Today’s CEOs Should Ask (& Know the Answer To)
In a previous blog, we discussed Commander’s Intent for CEOs and introduced 10 questions CEOs should be asking their teams. In this blog series, I am going to take a deeper dive into each question and break them down one at a time. We will discuss why CEOs should care about each question and the...
NIST Publishes Preliminary Cybersecurity Framework
Following an Executive Order issued by U.S. President Barack Obama in February of this year, the National Institute of Standards and Technology NIST yesterday made public a provisional copy of the government’s cybersecurity framework and says it will accept public comment on the draft for the nex...