Industry Insights

Read the latest cloud security news, trends, and thought leadership from subject matter experts.

Industry Insights
Is your vendor platform future proof?

Published: 09/21/2020

By WhisticIn the last few years, the InfoSec and data privacy sectors have grown exponentially. From on-premise hardware and servers to fully adopting cloud-based, SaaS-focused security workflows, the InfoSec world of 2020 looks much different from ten years ago. If you’re like most InfoSec leade...

Quantum Bitcoin

Published: 09/19/2020

By Dr. Jonathan Jogenfors, Quantum Bitcoin Inventor, Hacker, Atea Senior Information Security Consultant, CSA Blockchain Cybersecurity and Privacy Best Practices Group AdvisorMoney requires copy protection. If banknotes or coins could be forged, they would hardly be usable in daily life. Blockcha...

​Polyrize Launches Its Inaugural Shadow Identity Report

Published: 09/17/2020

Key trends and challenges in securing cloud identities and privilegesPolyrize, an innovator in managing and securing privileges and identity access across the public cloud, today launched its 2020 Shadow Identity Report, developed by its new SaaS Threat Labs Team. The report covers key trends and...

CSA CCM & Association of Banks in Singapore Cloud Computing Implementation Guide 2.0 Controls

Published: 09/16/2020

Written by: Co-chair - Arun VIVEK, Head of Cloud & Container Security – Cyber Security Services, Standard Chartered BankThis week CSA released a Cloud Controls Matrix (CCM) addendum and Gap Analysis Report for Associated Banks of Singapore. The report will help Singapore financial institution...

Blockweave: Patents Granted for Low-Cost Alternative to Blockchain

Published: 09/14/2020

By Maëva Ghonda, Co-Chair, CSA Blockchain and Distributed Ledger Technology Working GroupIn the last 24 months, 46 patent documents referencing Blockweave technology have been filed by a single owner, Pure Storage Inc. To date, 5 of these applications have already transitioned to granted patent s...

What is Third Party Risk and Why Does It Matter?

Published: 09/14/2020

By the Whistic TeamIn the world of information security, third party risk is a topic that comes up often. As more and more organizations turn to SaaS-based vendors and move their operations to a cloud-driven environment, third party risk has become one of the most critical topics for an organizat...

Understanding the Complexities of Securing a Remote Workforce

Published: 09/09/2020

By Sean Gray, Sr. Director InfoSec at Paypal and Co-Chair of the CSA Financial Services Working GroupWe have all witnessed sudden and stunning changes in how companies – big and small – operate in response to the challenges necessitated by COVID-19. Many have pivoted successfully, however there ...

Diving Deeper: 4 Best Practices for Securing Enterprise Data in Office 365 (O365)

Published: 09/09/2020

By Matt Hines, VP of Marketing at CipherCloud & Ishani Sircar, Product Marketing Manager at CipherCloudSo, here we are, both as workers and employers. The COVID-19 environment hasn’t really changed much from a workforce perspective over the last six months, other than the fact that more of us...

Boardroom Excellence: Quantum Risk Management

Published: 09/08/2020

By Maëva Ghonda, Co-Chair, CSA Blockchain and Distributed Ledger Technology Working GroupBoards only spend 9% of their time on risks.[1] Strategy and Performance Management still dominate the topics discussed at board meetings, 27% and 20% respectively.[2] Given the exponential increase of attack...

Shared Responsibility Model Automation: Automating Your Share

Published: 09/07/2020

By CloudPassageIn Part 1 of our Shared Responsibility blog series, we provided a detailed overview to help you understand security in a public, hybrid, or multi-cloud environment. We broke down the infrastructure stack, explained the responsibilities taken by the cloud service provider, and where...

The Service Mesh Wars: Why Istio might not be favorite after all

Published: 09/03/2020

By Gadi Naor, CTO and Co-Founder, AlcideThese days, more organizations are shifting to cloud-native applications, which are designed to run in the cloud and take advantage of the cloud’s dynamic, scalable and readily-available nature. Typically, cloud-native application architectures are made up ...

​Get Quantum Ready

Published: 09/02/2020

By Maëva Ghonda, Co-Chair, CSA Blockchain and Distributed Ledger Technology Working Group and Leighton Johnson, Member, CSA Blockchain Cybersecurity and Privacy Best Practices GroupBlockchain transactions rely on the strength of the “hash” process for integrity control. What happens when this “ha...

SSO and the Road to Passwordless

Published: 09/01/2020

By Dave Lewis, Advisory CISO — Global at DuoWe’ve all heard the phrase “every journey starts with a single step.” While this might seem obvious on the face of it, we can often feel pressure to immediately arrive at our destination.Discussions around passwordless often are too simplistic or too co...

Quantum-Safe Blockchain

Published: 08/28/2020

By Maëva Ghonda, Co-Chair, CSA Blockchain and Distributed Ledger Technology Working GroupBlockchain technologies are expected to generate more than $3 trillion annually in the next several years—by 2030.[1] The promise of blockchain is a self-contained decentralized ledger system that enables sec...

Shared Responsibility Model Explained

Published: 08/26/2020

By CloudPassageCloud service providers adhere to a shared security responsibility model, which means your security team maintains some responsibilities for security as you move applications, data, containers, and workloads to the cloud, while the provider takes some responsibility, but not all. D...

3 Ways to Overcome Challenges in Vendor Risk Management

Published: 08/25/2020

Written by WhisticOne of the most significant catalysts for the shift from reactive to proactive vendor security was the change in the way organizations do business and handle data and information.The Changing SaaS LandscapeInfoSec is one of the latest industries to hop on the SaaS train, but it ...

Cloud Security Alliance’s CASB Survey Finds Nearly 70% House Their Most Sensitive Data in Microsoft SharePoint Online/OneDrive

Published: 08/25/2020

By Tim Choi, Director of Product Marketing for ProofpointCOVID-19 changed everything overnight. The traditional perimeter is gone and the things that were planned years in the future—like cloud migration—had to be fast tracked. Immediately.This sudden shift is the latest evidence that organizatio...

Enabling Data Protection and Compliance in the G Suite Environment

Published: 08/21/2020

By Matt Hines, VP of Marketing at CipherCloud & Ishani Sircar, Product Marketing Manager at CipherCloudThe Rise of G Suite and Related Data Security ChallengesWith over 2 billion active users and a market share of 56.97 percent, G Suite is here to stay nd help enable today’s businesses to tac...

SaaS Security Series: Understanding Salesforce Administrative Permissions

Published: 08/19/2020

Brian Soby, CTO & Co-founder of AppOmniToday, more than ever, SaaS applications drive the modern enterprise. They are relied upon for managing customer data, allowing internal collaboration, and keeping organizations connected across the world. As the amount of sensitive and business-critical...

Can Passwordless Authentication Be Trusted?

Published: 08/17/2020

By J. Wolfgang Goerlich, Advisory CISO for Duo SecurityEvery new feature we introduce to our users is potentially a new tactic we provide our adversaries. When I was learning to drive, this happened with car steering wheel locks. Do you remember these? Big bars people would put on their steering ...

Browse by Topic