Articles In Security

By Steve Gold, Posted in Security

Written with contributions from Bryon Singh, Director of Security Operations, RailWorks Corporation Keeping tabs on every device connected to your network is crucial for maintaining security and functionality. CIS Safeguard 1.4, "Use Dynamic Host Configuration Protocol (DHCP) Logging to Update Enterprise Asset Inventory," helps achieve this with the meticulous accuracy of Hermione Granger from the Harry Potter series. The Hermione of Networks Much like Hermione Granger, known for her encyclopedic knowled... read more.

  • January 07, 2025

By Steve Gold, Posted in Security

Written with contributions from Bryon Singh, Director of Security Operations, RailWorks Corporation In the world of cybersecurity, staying ahead of threats requires more than just vigilance; it demands a keen eye for detail and an ability to uncover hidden assets. This is where CIS Safeguard 1.3, "Utilize an Active Discovery Tool," comes into play, much like the legendary detective Sherlock Holmes. The Case of the Missing Assets Imagine Sherlock Holmes, with his magnifying glass in hand, meticulously sca... read more.

  • December 17, 2024

By Steve Gold, Posted in Security

Well, that’s a wrap! Bryon Singh and I published a blog on all 56 cyber defense safeguards from CIS Critical Security Controls Implementation Group 1. These 56 safeguards are considered “essential cyber hygiene” for every organization. CIS recommends these safeguards as what every enterprise should apply to defend against the most common attacks. Transitioning from CIS Controls IG1 to IG2 Building a strong foundation with CIS Controls Implementation Group 1 (IG1) is just the beginning of... read more.

  • December 10, 2024

By Steve Gold, Posted in Security

Written with contributions from Bryon Singh, Director of Security Operations, RailWorks Corporation In today’s digital age, where cyberthreats are constantly evolving, establishing and maintaining an enterprise process for the workforce to report security incidents is crucial. A streamlined and well-publicized process ensures that incidents are reported promptly and accurately, allowing the organization to respond swiftly and mitigate potential damage. This blog outlines the key components of an effe... read more.

  • September 24, 2024

By Steve Gold, Posted in Security

Written with contributions from Bryon Singh, Director of Security Operations, RailWorks Corporation In the world of cybersecurity, a swift and coordinated response to security incidents is crucial. Central to this response is having up-to-date contact information for all parties that need to be informed. From internal staff to third-party vendors, law enforcement, and beyond, knowing whom to contact and how to reach them can make a significant difference in mitigating the impact of a security breach. This... read more.

  • September 17, 2024

By Bert Amodol, Posted in Security

Understanding Infant Digital Privacy: A Growing Concern in the Digital Age In today’s digital world, the concept of privacy has evolved beyond traditional boundaries. One of the most pressing issues emerging from this evolution is a new concept to me, "infant digital privacy." Although infants themselves are not interacting with digital technologies directly, their personal data is increasingly being collected, shared, and sometimes exploited. As parents and caregivers, it’s essential to unders... read more.

  • September 12, 2024

By Steve Gold, Posted in Security

Written with contributions from Bryon Singh, Director of Security Operations, RailWorks Corporation In the realm of cybersecurity, incidents are inevitable. The key to minimizing their impact lies in having a well-coordinated incident handling process. Central to this process is designating one key person and at least one backup who will manage the enterprise’s incident handling. This ensures that incident response and recovery efforts are coordinated and documented efficiently. Whether you rely on i... read more.

  • September 10, 2024

By Steve Gold, Posted in Security

In an increasingly interconnected world, enterprises rely on numerous service providers to support their operations, from cloud storage solutions to specialized consulting services. Managing these relationships effectively requires a comprehensive and up-to-date inventory of service providers. This blog explores the importance of establishing and maintaining such an inventory, complete with classifications and designated enterprise contacts, and highlights the necessity of regular reviews and updates. To ma... read more.

  • August 13, 2024

By Steve Gold, Posted in Security

In our increasingly interconnected world, the importance of secure network practices cannot be overstated. As more enterprises embrace remote work, it is crucial to train workforce members on the dangers of connecting to and transmitting data over insecure networks for enterprise activities. This training should also extend to securely configuring home network infrastructure. To make these concepts engaging and memorable, we will use references from popular culture to illustrate the importance of secure net... read more.

  • August 06, 2024

By Steve Gold, Posted in Security

In the fast-paced world of cybersecurity, keeping software up-to-date is a critical defense against vulnerabilities and threats. Ensuring that workforce members can verify and report out-of-date software patches or any failures in automated processes and tools is essential. This blog post explores best practices for this training, using engaging references from popular culture to make these concepts more relatable and memorable. The Importance of Software Updates Imagine if the Avengers didn’t upgra... read more.

  • July 30, 2024
1 : 00 AM

Hour
Minutes
AM PM
1 2 3 4 5 6 7 8 9 10 11 12