Filter By:

Recent Blogs & Podcasts

Insights

\ Faculty Report  



July 14, 2017 | Endpoints
By Marcus Ranum, IANS Faculty

 Navigate the Changing Landscape of ‘Next-Gen’ Antivirus and Endpoint Protection

From OSX to iOS and Windows XP to Windows 10, there is a very broad expanse of territory that has to be covered from an endpoint security perspective these days. In this report, IANS Faculty Marcus Ranum offers suggested investments in endpoint security over the next 24 months, and gives tips for evaluating all of the new “next-gen AV” products on the market today. 

Read More »


July 10, 2017 | Malware and Advanced Threats
By Mike Saurbaugh, IANS Faculty

 IANS Vulnerability and Breach Update: Q2 2017

A new vulnerability or breach seems to be discovered daily, but which should be taken more seriously and which are overhyped? In this report, IANS Faculty Mike Saurbaugh looks back over the major breaches and vulnerabilities of the past three months, explains them and provides real-world context and perspective.

Read More »


July 7, 2017 | Cloud Network and Host Controls
By Dave Shackleford, IANS Faculty

 IANS Cloud Security Update: Q2 2017

As organizations continue to move services and computing assets into cloud service provider environments, the need for adequate security controls grows as well. In this quarterly research report, IANS Faculty Dave Shackleford updates IANS’ clients on the new developments occurring in the cloud security arena.

Read More »


June 30, 2017 | Privileged Access Management
By Aaron Turner, IANS Faculty

 Build a Scalable Privileged Identity Management Program

The scope of the privileged identity problem continues to expand for organizations and is only exacerbated by the lack of investment in IDAM technologies. In this report, IANS Faculty Aaron Turner offers recommendations for aligning an overarching identity program with privileged user management from both a process and technology perspective. 

Read More »


June 22, 2017 | Threat Intelligence and Modeling
By Dave Shackleford, IANS Faculty

 Beef Up Your Threat Intelligence By Leveraging Internal Success

In the past year, we've experienced some of the largest, most impactful cyber-attacks in history, and one step organizations are taking to defend themselves is to make better use of threat intelligence. In this report, IANS Faculty Dave Shackleford details best practices for effectively gathering internal security event data, identifying external threat intelligence sources and integrating this data into your SIEM platforms and standalone collectors. 

Read More »


June 9, 2017 | Recruiting, Hiring and Retention
By Mike Saurbaugh, IANS Faculty

 Build, Manage and Retain a Strong Security Staff

In a hiring environment where skilled infosec professionals are hard to come by, organizations need to do everything they can to differentiate themselves from the competition. In this report, IANS Faculty Mike Saurbaugh offers proven strategies for maintaining a strong security staff and reveals the results of his survey on students' expectations upon entering the information security workforce. 

Read More »


May 30, 2017 | Malware and Advanced Threats
By Michael Pinch, IANS Faculty

 Top 5 Infosec Risks in Health Care and What to Do About Them

The top priorities for health care organizations today are uptime and free access to data, which means companies in this space face a number of security challenges. In this Expert Briefing, IANS Faculty Mike Pinch details the major security risks the health care industry is dealing with today - from ransomware to the Internet of Things - and offers strategies for tackling these challenges.

Read More »


May 26, 2017 | Mobile Client Devices
By Aaron Turner, IANS Faculty

 Cellular Vulnerabilities: How to Fix These Hidden Risks

When it comes to the risks posed by cellular networks, enterprise security professionals don't know what they don't know. In this report, IANS Faculty Aaron Turner details the most pressing vulnerabilities and threats associated with cellular networks and offers some strategic steps security teams can take to help mitigate these threats and limit risk exposure. 

Read More »


May 23, 2017 | Incident Response Planning
By Ondrej Krehel, IANS Faculty

 Negotiate a Winning Incident Response Retainer

The digital forensics and incident response (IR) market is a dynamic place with a growing number of vendors creating a wide variety of offerings and pricing models. In this report, IANS Faculty Ondrej Krehel details the three types of incident response retainers and offers key considerations for organizations deciding which would best suit their requirements and objectives. 

Read More »