Steven Grossman, Author at SecurityWeek

Security Automation – The Future Starts Now!

Incident Response Playbook Sharing Helps the Community Respond to Threats Without Having to Reinvent the Wheel

July 10, 2018

What We’ve Got Here is Failure to Communicate!

Many enterprises have been taking stock of their security architecture as well as assessing gaps and redundancies (see last month’s article Wading Through Tool...

June 11, 2018

Wading Through Tool Overload and Redundancy?

A False Sense of Security is Worse Than a Real Sense of Vulnerability

April 23, 2018

Woe is the Life of a Security Analyst in March

The IRS issued a warning last month about an updated version of the old wire transfer phishing scam, where fake emails are sent to...

March 13, 2018

Don’t be a “CIS-No,” Regain Control of your Data

Just like all things security, yet another new concept has taken the market by storm, being repeated over and over again. The perimeter is...

February 7, 2018

Big Brother is Watching, But That’s OK Within Limits

How Can a Company Protect its Information and Operations Without Running Askew of Data Privacy Laws and the Concerns of its Customers?

January 15, 2018

In the Words of President Ronald Reagan, “Trust but Verify”

Behavioral Analytics Enables Verification That Users Are Doing the Right Thing, And Promotes Transparency

December 20, 2017

Data Loss Prevention: From Hero to Goat and Back Again

Over a decade ago, as the digital economy was getting its legs, data loss prevention (DLP) technology was seen as the savior for companies...

November 8, 2017

What More Does It Take to Make Cyber Security a Top Priority?

It has been yet another busy month in the world of cyber security news. What does it mean when breaches reach private sector and...

October 30, 2017

Security is the Goal, Not Compliance

Just Because You Passed Your Compliance Audit Does Not Mean That You Are SecureWhen asked why he robs banks, Willie Sutton famously responded, “because...

September 5, 2017

User and Entity Behavior Analytics – A Floor Wax and a Dessert Topping

User and Entity Behavioral Analytics (UEBA) has evolved quite a bit over the past several years. It started as just User Behavioral Analytics, which...

August 7, 2017

Plans Are Worthless, But Planning is Everything

Planning for Cyber Protection and Resiliency is a Large Topic That Requires the Right Framework and a Balance of Strategic and Tactical Thinking

July 13, 2017

Where We Are Going You Do Need Roads

A series of events converged during the past few weeks that reemphasized the need for our industry to do a better job of establishing...

June 14, 2017

Trump’s Cybersecurity Executive Order a Positive Step, but Just a Start

May 17, 2017

You Can’t Protect Your Assets If You Don’t Understand Them

The Starting Point for Any Cyber Risk Management Program Must be Identifying Assets and Their Attributes

April 19, 2017

How to Improve Your Chances of Staying Out of the Insider Threat Headlines

Insider Threats Are a Fact of Life and Are Not Going Away.

March 30, 2017

It Takes a Village to Manage Cyber Risk

Regulators from the New York State Department of Financial Services should be applauded for their update to their upcoming cyber security regulation (if you...

February 27, 2017

It’s Time to Implement SOC 2.0

To Make the Most of your SOC and to Truly Minimize Cyber Risk, it Requires All Hands on Deck—Making Security Everybody’s Business.

January 30, 2017

Cyber Risk Reduction is All About the Business

During the past year, you may have noticed a shift in the way IT and security professionals talk about cyber security. Historically, firewalls, DLP,...

December 21, 2016