The Willy Wonka World of Application Security Defenses
One doesn’t have to be a magician to understand how to track the hundreds, if not thousands, of ...
Read More
Stay Informed
Sign up to receive the latest security news and trends straight to your inbox from Trustwave.
The Bug Stops Here: Using DevSecOps Workflows for Pest-Free Applications
Developers and cybersecurity have an interesting relationship. Developers have no problem with ...
Read MoreThe Art of Deception: Turning the Tables on Attackers with Active Defenses
Once an attacker enters your network, one of their first actions will be to try and hide their ...
Read MoreSentinels of Ex Machina: Defending AI Architectures
The introduction, adoption, and quick evolution of generative AI has raised multiple questions ...
Read MoreKnowing your Enemy: Situational Awareness in Cyber Defenses
Most homeowners know that a lock is a good idea as a basic defense against invaders, and leaving ...
Read MoreCloudy with a Chance of Hackers: Protecting Critical Cloud Workloads
If you've been following along with David's posts, you'll have noticed a structure to the topics: ...
Read MoreTips for Optimizing Your Security Operations Framework
Building an effective Security Operations framework that provides the right balance of people, ...
Read MoreThe Underdog of Cybersecurity: Uncovering Hidden Value in Threat Intelligence
Threat Intelligence, or just TI, is sometimes criticized for possibly being inaccurate or outdated. ...
Read MoreClockwork Blue: Automating Security Defenses with SOAR and AI
It’s impractical to operate security operations alone, using manual human processes. Finding ...
Read MoreScanning the Matrix: SIEM Best Practices
(A thought from The Matrix: Neo likely used a SIEM before he took the red pill and could see the ...
Read MoreSecure Access Service Edge: Another Multi-Tool for the SOC
Over the years, several security defense architectures have merged into a single solution. Endpoint ...
Read MoreThe Sentinel’s Watch: Building a Security Reporting Framework
Imagine being on shift as the guard of a fortress. Your job is to identify threats as they approach ...
Read MoreCyber Exterminators: Monitoring the Shop Floor with OT Security
Pressure is increasing on manufacturers to monitor their shop floors for malicious activity to ...
Read MoreImportant Security Defenses to Help Your CISO Sleep at Night
This is Part 13 in my ongoing project to cover 30 cybersecurity topics in 30 weekly blog posts. The ...
Read MoreHow to Create the Asset Inventory You Probably Don't Have
This is Part 12 in my ongoing project to cover 30 cybersecurity topics in 30 weekly blog posts. The ...
Read MoreGuardians of the Gateway: Identity and Access Management Best Practices
This is Part 10 in my ongoing project to cover 30 cybersecurity topics in 30 weekly blog posts. The ...
Read MoreProtecting Zion: InfoSec Encryption Concepts and Tips
This is Part 9 in my ongoing project to cover 30 cybersecurity topics in 30 weekly blog posts. The ...
Read MoreEDR – The Multi-Tool of Security Defenses
This is Part 8 in my ongoing project to cover 30 cybersecurity topics in 30 weekly blog posts. The ...
Read MoreThe Invisible Battleground: Essentials of EASM
Know your enemy – inside and out. External Attack Surface Management tools are an effective way to ...
Read MoreThe Secret Cipher: Modern Data Loss Prevention Solutions
This is Part 7 in my ongoing project to cover 30 cybersecurity topics in 30 weekly blog posts. The ...
Read MoreCNAPP, CSPM, CIEM, CWPP – Oh My!
We all know the cybersecurity industry loves its acronyms, but just because this fact is widely ...
Read MoreZero Trust Essentials
This is Part 5 in my ongoing project to cover 30 cybersecurity topics in 30 weekly blog posts. The ...
Read MoreEvaluating Your Security Posture: Security Assessment Basics
This is Part 4 in my ongoing project to cover 30 cybersecurity topics in 30 weekly blog posts. The ...
Read MoreCybersecurity Documentation Essentials
This is Part 3 in my ongoing project to cover 30 cybersecurity topics in 30 weekly blog posts.
Read MoreCost Management Tips for Cyber Admins
As anyone who has filled out an expense report can tell you, cost management is everyone's ...
Read MoreCloud Architecture, Frameworks and Benchmarks
At any point in your cloud security journey, you should consider practical architectures, ...
Read MoreWelcome to Adventures in Cybersecurity: The Defender Series
I’m happy to say I’m done chasing Microsoft certifications (AZ104/AZ500/SC100), and as a result, ...
Read More