Security Experts:
Nimmy Reichenberg
Nimmy Reichenberg is the VP of Marketing and Strategy for AlgoSec, a solution provider for Network Security Policy Management. Nimmy began his career as a security software engineer and has spent the last 10 years working with organizations across the world to address their security needs, focusing mainly on mobile device management and network security. He holds a B.Sc. in Computer Science and an MBA from Tel Aviv University.
Recent articles by Nimmy Reichenberg
-
Security practitioners have long had a love-hate relationship with automation, and for good reason.
-
By properly segregating the network, you are essentially minimizing the level of access to sensitive information for those applications, servers, and people who don’t need it, while enabling access for those that do.
-
Most organizations today lack the tools and processes to assess and prioritize risks and vulnerabilities from the business perspective and end up defaulting to one of three approaches.
-
With the release of PCI-DSS 3.0, organizations have a framework for payment security as part of their business-as-usual activities by introducing more flexibility, and an increased focus on education, awareness and security as a shared responsibility.
-
There are numerous financial and operational reasons to make the move to a private, public or hybrid cloud, but you must understand the impact on applications .
-
A sound network security perimeter architecture requires multiple layers of defense, up-to-date and hardened policies and controls and segmentation.
-
By including security into the DevOps model, organizations can attain that improved agility and operational excellence while also improving the necessary checks and balances before changes are pushed into production.
-
While private clouds are under the control of the corporate IT department, it does not mean that migrating a data center to a private cloud is free of security implications.
-
Critical applications fuel the business, yet oftentimes there is a disconnect between the business requirements and the security policy. Aligning the two will ultimately improve security and allow IT to keep up with the dynamic needs of the business.
-
Today’s businesses must be able to rapidly adapt to changing market conditions – to support a new venture, merger/acquisition, etc. As business needs change, so too must the underlying security policies.
-
Verizon’s DBIR said 92% of breaches are perpetrated by outsiders while 14% are committed by insiders. So clearly external threats are the greatest risk right?
-
The firewall – it’s been around since the dawn of the commercial internet, but it has been and remains a vital layer in the network security defense. Let’s take a look at the evolution of the firewall and fast-forward to what we can expect in the future.
-
From a security perspective, most consumer devices and services leave much to be desired. The tools at the disposal of security professionals for dealing with consumerization are quite limited and include the ability to Block it, Wrap it, or Allow it and pray.
-
Next-generation firewalls provide additional benefits over traditional firewalls, but in order to reap the benefits without adding complexity and risk, you must map out a plan in advance of your implementation and have a process to manage these policies.
-
Without properly sizing the next-generation firewall capabilities you plan to use for the environment, firewall performance can drop off significantly and create more opportunity for error and risk.
-
While BYOD is concerned with the risk from personal devices, BYON (Bring Your Own Network) is a different type of risk
-
While regulations and ensuing IT audits go beyond firewalls and firewall policies, these devices are often a good place to start when it comes to becoming "audit-ready" and gaining continuous visibility of what's going on in your network.
-
Application vulnerabilities are a prime vector for attacks. But one aspect of securing enterprise applications often overlooked and almost always poorly handled in organizations, is securing application connectivity!
-
Every time you make a change to a production system or network you risk the possibility of having a system outage. But just because you’re in a freeze doesn’t mean there aren’t risks on your network that need to be addressed.
-
A malicious and/or disgruntled administrator, or compromised administrator accounts certainly poses a security risk, but there is a far more common risk with an administrator making a simple error.
-
IT Security and IT Operations teams are strained with managing and supporting next-generation security devices, often clamoring for more resources to get the job done. sometimes gets lost in the shuffle is the bigger picture, which is to make the business run more smoothly and efficiently.
-
Change is the norm for most security teams, as evolving business requirements as well as new threats dictate new or modified policies and tools. But security change management is handled poorly by most organizations
-
Would you do anything differently if you knew you were already hacked? If the answer is yes, why not be proactive and take those measures today?
SecurityWeek Daily Briefing
- Exploit Code Published for Recent Container Escape Vulnerability
- Digital Transformation Presents Both Reward and Risk
- Storage Maker QNAP Warns of Malware Targeting Its NAS Devices
- Legislation Would Stiffen Penalties for Ransomware Attacks
- US Facebook Fine Over Privacy Could Be in Billions: Reports
- Australia Says 'State Actor' Hacked Parties, Parliament
- Cryptojacking Applications Land in Microsoft Store
- US Says Ex-intel Official Defected to Iran, Revealed Secrets
- DHS Cyber Leader Says 2020 Security Preparations Underway
- CSRF Vulnerability in Facebook Earns Researcher $25,000
Copyright © 2019 Wired Business Media. All Rights Reserved. Privacy Policy