why organizations don't patch

We Don’t Need No Stinking Patches: Why Organizations Don’t Patch

As a cyber security vendor, we regularly advise our readers and clients to “patch early and patch often.” There are many reasons why organizations don’t patch systems and devices, though. First off, let’s just say that patching is a bit like working out. We all know we should exercise regularly. The reality though, is that… Read More

cyber security talent gap

The Cyber Security Talent Gap: Developing Staff to Manage Risk

*This blog was co-authored by Sean Falconi Not a day goes by that we don’t hear about some new large-scale data breach, ransomware attack, or zero-day exploit that affects tens of millions of people. As a result of the increasing number of attacks, and their growing complexity, the need for highly skilled cyber professionals is… Read More

Burp Suite Professional for Web Application Security

How to Use Burp Suite Professional for Web Application Security [Part One]

Burp Suite Professional is one of the most popular penetration testing and vulnerability finder tools, and is often used for checking web application security. “Burp,” as it is commonly known, is a proxy-based tool used to evaluate the security of web-based applications and do hands-on testing. With more than 40,000 users, Burp Suite is the… Read More

Office Cyber Security and COVID-19

Office Cyber Security and COVID-19: Are You Prepared?

There’s no doubt coronavirus (COVID-19) is dramatically affecting the way we work, both now and almost certainly in the long term. Pre-pandemic, most people commuted to a physical office or location. Then, in what seemed like the blink of an eye, state and national guidelines on social distancing left many companies scrambling to put remote… Read More

information security governance

Information Security Governance: 5 Tips for New CISOs [Cheat Sheet]

As a new Chief Information Security Officer (CISO), you’ve got a lot to juggle if you want to effectively address information security governance. There’s navigating internal politics and team dynamics, figuring out complex infrastructure and where cloud fits into your strategy, determining what compliance and regulatory requirements you have to meet, managing remote workers and… Read More