DATA SECURITY

New Microsoft Security Podcast Debuts on the CyberWire Network

CyberWire | May 18, 2021

The CyberWire confirmed recently that Microsoft Security's newest podcast, "Security Unlocked: CISO Series with Bret Arsenault," has debuted as part of the CyberWire's increasingly growing podcast network. The show's host, Microsoft's Chief Information Security Officer (CISO), Bret Arsenault, will speak one-on-one with industry peers as well as Microsoft executives about the most pressing cybersecurity issues today. He and his colleagues will discuss new ideas and perspectives, as well as provide practical advice to security professionals.

The first show of the inaugural season features a candid and informative discussion with Mark Russinovich, CTO of Azure and Technical Fellow at Microsoft. Arsenault and Russinovich immediately delve into two important issues of the day, cloud security and zero trusts, providing insights into how technology is changing and the unique challenges imposed by the coronavirus pandemic have prompted developments in recent years.

"Microsoft Security is at the forefront of building a secure cyberspace for individuals and organizations alike, and we're delighted to have their amazing new podcast join our network," said Peter Kilpe, CEO and Executive Editor of the CyberWire. "With the rapid pace of change in our industry and the ever-changing threat landscape, there is an urgent need for practical guidance and insights that security teams can use to defend their organizations. Bret's show is an excellent resource for business professionals."

"I am a listener and fan of CyberWire's podcasts, and I am glad the team was open to sharing the Microsoft Unlocked CISO series with its listeners, who are the same security professionals I speak to every day," said Bret Arsenault, Microsoft's Chief Information Security Officer. "My vision for the podcast is that it would be another helpful outlet for me to expand the conversations I have both externally and internally with some of the brightest security minds in the industry, providing listeners with practical advice they can put into effect right away."

About the CyberWire

CyberWire easily brings users up to date on cyber and holds them one step ahead of an ever-changing industry. The services are built around situational awareness, continuing education, and professional development. Many of the world's most influential leaders and experts in the public and private sectors have long relied on CyberWire. We separate the signal from the noise.

Spotlight

System integrity is a cardinal component of information security. It ensures that information systems operate within some desirable limits. Internet security threats such as malware and highly malicious programs are on the rise, resulting in the necessity for extensive research efforts to develop mechanisms that can counter various threats. Malware Sandbox analysis is an effective mechanism having received propositions as a potential solution.

Spotlight

System integrity is a cardinal component of information security. It ensures that information systems operate within some desirable limits. Internet security threats such as malware and highly malicious programs are on the rise, resulting in the necessity for extensive research efforts to develop mechanisms that can counter various threats. Malware Sandbox analysis is an effective mechanism having received propositions as a potential solution.

Related News

DATA SECURITY,PLATFORM SECURITY,SOFTWARE SECURITY

Copado Launches New DevSecOps Training Module to Make Releases Faster and More Secure

Copado | September 01, 2022

Copado, the global leader in low-code DevOps, today announced it launched a new DevSecOps training module to help make software releases faster and more secure. The new module is available in the Copado Community, where its 55,000 members can learn, connect and grow their careers. Copado has already trained more than 35,000 DevOps specialists and certified more than 20,000 DevOps professionals with a goal to train 15,000 more by the end of 2022. Research has shown that 70% of development teams lack the knowledge and skills needed to implement DevSecOps best practices. "Without DevSecOps best practices, software releases can be plagued with quality and security issues, costing more time and money post-production to correct them. "To address this growing need for DevSecOps skill sets, Copado is offering self-paced online training to upskill DevOps professionals, administrators, developers and architects. Our community can help jumpstart a new career path or level up your current path by unlocking your full potential." Pat McQueen, Senior Vice President of Customer Success & Global Services at Copado The DevSecOps module is designed to help make release cycles shorter, more secure and resilient. It explains how to integrate compliance, security and testing in a DevOps pipeline in order to avoid cybersecurity architects manually maintaining the security consoles and additional configurations in the application. It highlights the importance of security and compliance for an organization, identifies DevSecOps best practices, and explains how to build a successful DevSecOps strategy and culture. Copado also joined industry leaders Accenture, Broadcom, IBM and others in the new OASIS Open Value Stream Management (VSM) Interoperability Technical Committee. The group will develop new interoperability standards to enable VSM data sharing across platforms. "DevOps and DevSecOps are extremely fractured markets when it comes to tools: there are literally thousands of products that are involved in building resilient pipelines," said Daniel Riedel, Senior Vice President of Strategic Services for Copado. "As the industry matures, value stream management will help bring observability to the process. Creating an interoperability standard now will ensure that organizations can rely on cohesiveness in tool integration. Interoperability will provide the transparency to ensure a stronger, more resilient infrastructure for customers and employees." About Copado Copado is the leading DevOps and testing solution for low-code SaaS platforms that run the world's largest digital transformations. Backed by Insight Partners, Salesforce Ventures and SoftBank Vision Fund, Copado accelerates multi-cloud, enterprise deployments by automating the end-to-end software delivery process to maximize customers' return on their cloud investment. More than 1,000 companies rely on Copado to drive digital transformation with speed, quality and value including Boston Scientific, Coca-Cola, Fair Trade, Linde, MassMutual, Schneider Electric and Shell. Copado processes over 50 million DevOps transactions per month and is rated with a 100% score on the Salesforce AppExchange.

Read More

SOFTWARE SECURITY

MERIPLEX acquires Louisiana-based MSP, Verma Systems

Meriplex | July 18, 2022

Meriplex, a nationwide leader in managed cybersecurity and IT solutions, is pleased to announce the asset acquisition of Louisiana-based managed service provider, Verma Systems. For over 31 years, Verma Systems has been a leading and trusted IT and consulting partner for businesses in Baton Rouge and across Louisiana. They provide personalized solutions to their clients allowing them to leverage IT and technology to enhance business efficiency. "Verma Systems is an excellent addition to the Meriplex organization. "With their talented team and longstanding reputation in the Louisiana market, we will be able to provide more innovative technology and service offerings to their clients and work towards our goal of being the number one MSP/MSSP in the nation." David Henley, CEO of Meriplex "For me, it has always been about the customer and our employees," said Mitch Verma, President of Verma Systems. "Joining forces with Meriplex means we have more resources at our fingertips including additional IT experts, new product lines, and the capability to offer more well-rounded technical solutions. I know the people behind Meriplex, and we share the same core values and work ethic. With their expertise, size and seasoned approach, I am confident we can provide more for our clients and our employees." As a fast-growing managed services provider, Meriplex focuses on strategically acquiring businesses in leading markets in order to establish a regional presence and acquire talent to support their increasing large organic and inorganic growth. If you are interested in learning more about our M&A process, please reach out to us here. About Meriplex Meriplex is a managed cybersecurity, IT, and SD-WAN solutions provider that enables transformation by combining secure, innovative technology with advanced expertise. As a trusted partner, we deliver business-driven solutions that provide the scalability and support needed to power growth for organizations. About Verma Systems Established in 1991, Verma Systems is a Baton Rouge IT services company specializing in business technology tailored towards the SMB market. With our highly talented and experienced team, we know how to meet business needs by incorporating the right technology solutions to help your company be successful. Our mission is focused on hard work, smart work, and superior customer service.

Read More

SOFTWARE SECURITY

Cymulate Bolsters Proactive Cybersecurity Exposure Management with Advanced Analytics

Cymulate | August 12, 2022

Cymulate, the leader in Continuous Threat Exposure Management, today announced the expansion of its Extended Security Posture Management (XSPM) Platform to include advanced insights and analytics capabilities. As businesses struggle to manage attack surfaces and validate security controls, these new data-driven capabilities significantly improve risk visibility and deliver actionable insights for reducing remediation time. Businesses also now gain enhanced levels of granularity for setting and tracking cybersecurity performance metrics and KPIs, which are required for improving cyber resilience. "Now, more than ever, organizations require automated contextual reporting of exposure findings to understand and optimize their security posture. "Our new analytics layer provides critical data for prioritizing mitigations and fine-tuning configurations for closing security gaps. This prioritization is key for effectiveness in times of skills shortage. Additionally, technical jargon is translated into meaningful reports that can be used to more effectively inform business stakeholders." Avihai Ben-Yossef, CTO and Co-Founder of Cymulate Cymulate's platform, the industry's gold standard for continuous threat exposure management (CTEM) programs, provides customers with an efficient way to validate their cybersecurity posture continuously and on-demand. Proven to reduce operational drain and cost, Cymulate automatically tests networks, applications, and endpoint security against the latest threats in the wild. Plus, its native, offensive security technology and capabilities accelerate response time by dynamically assessing and responding to security posture risks. Customers benefit from Cymulate Security Posture Management Analytics capabilities with the ability to quickly normalize, aggregate, and analyze data across the platform's automated cyberattacks functionality. The holistic solution combines Attack Surface Management, automated red-teaming, Breach and Attack Simulation, automated security validation, and vulnerability prioritization, providing a clear and holistic view of the business's security posture. Based on global analytics findings, users can improve security readiness by Establishing baselines on multiple attack vectors and gaining consistency in measuring against them Viewing and building dynamic dashboards for insights and visualization of results Demonstrating trends and improving awareness of security posture drift Tracking remediation efforts with ticketing systems' integrations Generating customized reports so security teams can rerun attacks to assess whether remediation efforts have been successful Justifying security spending in a quantifiable manner and showcasing security achievements over a specified period of time. About Cymulate The Cymulate SaaS-based Extended Security Posture Management (XSPM) provides security professionals with the ability to continuously challenge, validate and optimize their on-premises and cloud cyber-security posture with end-to-end visualization across the MITRE ATT&CK® framework. The platform provides automated, expert, and threat intelligence-led risk assessments that are simple to deploy, and easy for organizations of all cybersecurity maturity levels to use. It also provides an open framework for creating and automating red and purple teaming by generating tailored penetration scenarios and advanced attack campaigns for their unique environments and security policies.

Read More