Chris Jackson, Principal Program Manager at Microsoft, said, We sat down and asked ourselves this question: if we didn’t know anything at all about your environment, what security policies and ...

The Cybersecurity and Infrastructure Security Agency is inviting public comment—particularly from agencies—on what it’s proposing as the bare minimum set of actions organizations should take to ...

In today's connected world, securing industrial control systems (ICSs) is more important than ever. Industrial control system cybersecurity standards like NERC CIP, ISA-99 (IEC-62443), and NIST 800-82 ...

Secure configurations are a key best practice for limiting an organization’s cyber vulnerabilities. Since systems don’t ship securely, it’s important to review and implement recommended guidance.

The vast majority (80%) of ransomware attacks can be traced back to common configuration errors in software and devices, according to Microsoft. The tech giant’s latest Cyber Signals report focuses on ...

There’s an old adage in business: If you’re not measuring, you’re not managing. These days, information technology (IT) and information security professionals know this all too well, especially when ...

Information Assets and Information Technology (IT) Resources are valuable and essential to furthering the mission of Purdue University. Administrative, technological, and physical safeguards are ...

Platform engineering is the rising star of the operations firmament. But squint hard and you'll quickly see that the foundation of any serious platform engineering program is operational and ...

CISA has published the finalized Microsoft 365 Secure Configuration Baselines, designed to bolster the security and resilience of organizations’ Microsoft 365 (M365) cloud services. This guidance ...

SPI Dynamics – These days, the biggest threat to an organization’s network security comes from its public Web site and the Web-based applications found there. Unlike internal-only network services ...