3 Min Read May 26, 2016

How to Create an Effective Cloud Security Alerting Process

The first component of any security program should be an alert system. Alerts are typically the fastest and most effective way to be notified when something goes wrong so you can jump into action. But alerts also have the stigma of being too noisy, throwing out false positives, or requiring a lot of fine tuning […]

4 Min Read May 18, 2016

Your Cloud Security Goals: Where to Start?

We’re willing to assume that cloud security is important to your company, but proactively building and implementing a strategy to make it happen is often bypassed in favor of a more reactive and tactical approach to cloud security.

5 Min Read May 12, 2016

A Guide to Assess Where You Stand With Cloud Security

Cloud security is a sprint and a marathon. A sprint in that security teams must quickly put the right defenses in place to address zero-day attacks and persistent threats in the short term, and a marathon in that an organization’s security posture needs to be regularly evaluated and improved on over the long term to […]

5 Min Read May 6, 2016

How to Get Buy-In for Your Cloud Security Strategy

“All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved.” – Sun Tzu Ah, team buy-in. It’s often one of the toughest processes to go through! Getting the green light on a new cloud security strategy (including the workflows, tools, and processes that go […]

5 Min Read April 26, 2016

How to Use SOSTAC® to Build Your Security Strategy

Some people go to great lengths to find things to disagree about, but I think there’s one thing all of us can agree on: cloud security keeps us on our toes. That’s because the cloud requires a fundamental change in the way we approach security challenges. As the scale and complexity of cloud environments increase, […]

2 Min Read February 11, 2016

How to Pick a Cloud Security Technology that Works for Everyone at Your Organization

Does the ownership of security within your organization look like a disorganized football scrimmage with no clear offense or defense? This is often the case since many organizations launch their cloud security programs in response to an acute pain point, such as a security incident or compliance obligation, without an overall strategy in place. Typically, […]