You may need Google translate to read this First Financial article about the threats of MasterPrint.
Smart Office Controls
Forget light switches and thermostat buttons in the office. IoT sensors can control when lights go on and off, as well as heating and cooling in the office. Lights can go on and off based on your location.
Five spring cleaning tips for your Identity and Access Management program
Spring cleaning is a tradition for millions of families, but most companies lack the same tradition when it comes to the long-term management of their Identity and Access Management (IAM) programs. This is not benign neglect, but rather an underlying fear that the IAM program resembles a shaky tower of cardboard boxes full with random stuff, sitting in the garage.
Understanding Cybersecurity Breaches at Consulting Firms
Cybersecurity threats are affecting consulting and professional service firms causing substantial losses. Kayne McGladrey (@kaynemcgladrey), an IEEE Member and professional services director, weighed in on how consulting firms can mitigate threats, keep client data safe and learn from current breaches.
Even so, make sure its memory is cleared of sensitive information. Someone who “wants to compromise the device could get unfettered long-term access” to it, says Kayne McGladrey, director of information security services at cybersecurity consulting firm Integral Partners. Passwords and encryption may not be enough to protect your data: “They can just clone your drive.”
Cyber Threat Prevention: How to Keep Your Services Organization From Being Hacked
Consulting firms can suffer irreparable damage to their reputation if they lose client data due to a cybersecurity incident. This article examines the current threat landscape and provides strategic guidance to prevent professional services firms from becoming the next breach statistic.
Three Lessons about Cloud Security from 1980s Horror Movies
This article discusses how businesses can apply three fundamental best practices for adapting current security programs to mitigate insider threats as applications and data migrate to the cloud.
The Truth-Bias and How It Affects IAM, IGA and PAM Programs
People are only able to detect lies about 50% of the time, but we tend to trust people we know when they request access by email. What does this mean for IAM, IGA, and PAM programs?
Seven ways to fail your first consulting interview
Interviews are inherently challenging and stressful for candidates, and everyone makes mistakes during an interview. Avoiding these seven common mistakes does not guarantee that a candidate will not advance to the second interview at a consulting firm; however, candidates who commit multiple of these (particularly concurrently) won’t be asked back.
IAM market consolidation looms in 2017
Our fifteen-year legacy of organizations implementing the relevant regulatory standards and still suffering cyber security breaches has led forward-thinking organizations to focus on risk management rather than compliance for compliance’s sake.
Launch your own privileged insider attacks for under $1,500 USD
This article will examine the costs and budgetary considerations for a new bad actor, lacking global resources, to set up a single privileged identity theft campaign to be able to launch insider attacks. The costs shown will assume corporate targets in the greater Seattle metropolitan area. This article will also briefly examine countermeasures.
The good news is that it is still possible to become an evil villain for an initial investment of under $1,500 USD, despite rising labor costs.
@Pebble is Shutting Down. Can They Take Two-Factor Authentication for #Cybersecurity With Them?
However, the biggest utility for my Pebble was two-factor authentication from my bank. My bank has had a somewhat tortured Consumer Identity and Access Management rollout over the years. They initially had single-factor authentication – a username and password. They briefly flirted with pictures, until they realized the Internet has an insatiable love of cats. They then deployed Knowledge-Based Authentication, safe in the knowledge that no-one would post their first spouse’s name, the name of their elementary school, and their favorite band on Facebook. Thus, they reluctantly deployed SMS-based two-factor authentication.
Getting Started with Identity Analytics for an Identity and Access Management (IAM) Program
Password reuse by individuals is one of the great failings of IAM programs. The fundamental assumption of a successful IAM project is that an organization can correctly identify an individual user. Although this sounds like a low bar, many organizations are failing to clear it because of password breaches happening outside of the corporate firewall.