BLOG

Insights from the ArmorPoint team.

Threat research, operational playbooks, and security leadership.

142 results · Page 8 of 12

Articles

7 Essential Security Assessments Every Business Needs

To maintain a strong security posture, businesses should conduct essential security assessments like vulnerability scanning, penetration testing, and risk assessments. These evaluations are vital for identifying weaknesses, managing cyber risk, and ensuring compliance with industry frameworks like NIST and PCI DSS.

5 min read · aburgett
Read more →
Articles

Inside the SOC: Essential Tools and Technologies for Cyber Defense

A Security Operations Center (SOC) is a multi-layered hub for proactive cyber defense, using tools like SIEM, EDR, and NTA for continuous monitoring and threat detection. These tools, enhanced by AI and machine learning, are crucial for effective incident response and compliance reporting.

5 min read · aburgett
Read more →
Articles

Key Takeaways from the Top Cybersecurity Breaches of 2024

Major breaches in 2024, including the "Mother of All Breaches" (MOAB) and the Change Healthcare attack, highlight the need for robust security measures. Key takeaways include implementing multi-factor authentication, conducting continuous security audits, and enhancing employee training on phishing and third-party vendor risks.

7 min read · aburgett
Read more →
Articles

Addressing the Cybersecurity Regulations Impacting the European Market: NIS2, CRA, and DORA

European cybersecurity regulations like NIS2, CRA, and DORA are being introduced to strengthen defenses in the digital world. NIS2 broadens the scope of critical sectors, the CRA focuses on securing digital products from design, and DORA enhances the operational resilience of the financial sector.

5 min read · aburgett
Read more →
Articles

How to Build a Mature Cybersecurity Program

Building a mature cybersecurity program requires a dynamic, three-step process: strategic alignment and planning, risk-centric deployment, and continuous optimization. This approach goes beyond technology, involving collaboration across the organization and leveraging external expertise to identify blind spots and ensure comprehensive defenses.

3 min read · aburgett
Read more →
Articles

Understanding the Shift to Continuous Threat Exposure Management (CTEM)

The shift from traditional, periodic security scans to Continuous Threat Exposure Management (CTEM) is crucial for a proactive defense. By continuously assessing and mitigating risks, CTEM helps organizations strategically prioritize threats and significantly reduce the likelihood of a security breach.

5 min read · aburgett
Read more →
Articles

Rethinking Risk in Healthcare: Unifying Cyber and Enterprise Risk Management

Healthcare organizations must integrate Cyber Risk Management and Enterprise Risk Management to protect against evolving threats and comply with regulations. Bridging the knowledge gap between IT and leadership, conducting continuous risk assessments, and fostering a risk-aware culture are key steps for this unified approach.

6 min read · aburgett
Read more →
Articles

Rise of Shadow IT Risks in the Age of Freemium SaaS

The rise of Shadow IT, the use of unauthorized software by employees, poses significant security and compliance risks for organizations. While a managed SOC can help detect Shadow IT, a balanced approach with employee education and clear IT policies is crucial to maintain security without stifling innovation.

6 min read · aburgett
Read more →
Articles

Practical Incident Response Guidance from NIST SP 800-61

Following the NIST SP 800-61 framework is essential for effective incident response, which is divided into four phases: Preparation, Detection and Analysis, Containment/Eradication/Recovery, and Post-Incident Activity. This structured approach helps organizations reduce the time it takes to contain a breach and recover from cybersecurity incidents.

5 min read · aburgett
Read more →
Articles

The People Element in Cybersecurity: Transitioning to Human-Centric Risk Management

A human-centric approach called Human Risk Management (HRM) is crucial because a majority of data breaches involve a human element. Effective HRM programs include continuous security awareness training and phishing simulations to mitigate risks introduced by human behavior, which technology alone cannot address.

6 min read · aburgett
Read more →
Articles

From Crisis to Continuity: Understanding the Importance of IR, DR, and BCP

Organizations must have robust plans for incident response (IR), disaster recovery (DR), and business continuity (BCP) to handle disruptions effectively. While IR plans focus on cybersecurity threats and DR plans restore IT infrastructure, BCPs ensure essential business operations continue during and after a crisis.

6 min read · aburgett
Read more →
Articles

Understanding the HHS' Cybersecurity Performance Goals

The HHS introduced Cybersecurity Performance Goals (CPGs) for healthcare organizations to strengthen defenses, with essential goals for foundational security and enhanced goals for more sophisticated measures. These goals align with the NIST Cybersecurity Framework, providing a roadmap for protecting patient data and building cyber resilience.

6 min read · aburgett
Read more →