Overview
Explore
Labs
Services
Events
Partners
57 results found
Doomsday Prep: How to Keep Your Business Alive During a Ransomware Attack
With 88 percent of organizations facing at least one ransomware attack annually, the focus must shift from just prevention to survival.
The solution: Minimum Viable Recovery (MVR) — a practical approach to recovering just enough to keep the business running. This is about achieving Minimum Viable Business, not full restoration.
A Practitioner's Guide: SOC of the Future
Is the future here? Can we build a scalable, agile foundation that leverages robust data management and pipelines to enable real-time alerting? Can it leverage AI-augmentation and automated responses to proactively detect and mitigate threats? I think we may be close...
How Generative AI Impacts Identity and Access Management
Explore the potential of generative AI to transform the four pillars of Identity and Access Management (IAM): authentication, authorization, administration and auditing.
Introduction to Cortex XDR
Learn how Cortex XDR secures the future by rewiring security operations.
Understanding Salt Typhoon: Why Security Leaders Should Take Notice
Salt Typhoon, a Chinese state-sponsored cyber espionage campaign, has targeted critical U.S. telecommunications infrastructure, exposing vulnerabilities and compromising sensitive data. This sophisticated operation underscores the urgent need for robust cybersecurity measures and heightened awareness among security leaders to protect against evolving threats.
SIEM Overload to Smart Security: The Power of Data Pipeline and Modern Storage
Traditional SIEMs have long been treated as massive log repositories, leading to skyrocketing costs and visibility gaps. Data pipeline management changes the game — optimizing log ingestion, enriching security data, and reducing SIEM costs without sacrificing detection capabilities. Learn how modern data pipelines, security data lakes and AI-driven analytics are transforming SOC efficiency and redefining how organizations manage security telemetry.
A CTO's Primer on Breach & Attack Simulation: Part 1 - Market Landscape
Breach and attack simulation (BAS) tools are revolutionizing cybersecurity by automating threat testing. While tools like AttackIQ and Mandiant Security Validation lead the market, organizations must prioritize their unique needs over flashy features. This article explores how to select the right BAS solution to align with strategic goals and optimize security.
Navigating the SIEM Journey: Insights, Challenges and the Future
Discover the power of Security Information and Event Management (SIEM) in modern cybersecurity. This blog explores how SIEM consolidates data, detects threats, enhances compliance and empowers SOC teams to stay ahead of cyber adversaries. Learn about its benefits, challenges and the future of SIEM in defending against evolving threats while optimizing your security operations.
A Practitioner's Guide: Automation within Security Operations
Security operations automation has evolved from basic manual processes to sophisticated, AI-enhanced workflows. Traditional SOAR helps standardize these tasks, but newer "hyperautomation" platforms promise to take it further with cloud-native architectures and built-in AI.
Understanding the DPRK Remote Worker Threat
North Korean cyber operatives are increasingly sophisticated, using AI-enhanced deception and exploiting privileged roles to infiltrate global enterprises. This article explores their evolving tactics, critical vulnerabilities, and strategies to bolster cybersecurity defenses against these advanced persistent threats.
A Practitioner's Guide: Detections within Security Operations
The analytics engine, sometimes referred to as a detection engine, is the core of a modern security operations center (SOC), generating high-fidelity alerts and adding context so responders can quickly identify and act on threats. In this article we discuss the evolution of security operations detections, and the major players in the space.
Healthcare Technology Insights for 2025
The unprecedented speed at which regulatory and political changes are announced by our new federal administration is requiring healthcare executives to find balance between strengthening their core business and catching up with the AI train that has taken most industries by storm. The endless opportunities made possible by AI for reinventing healthcare are offset by the risks associated with increasing cyber threats and workforce challenges. Collectively, this promises to make 2025 a year like no other.