David Monahan
Recent Posts
Damballa and Bit9 + Carbon Black Collaborate to Deliver Better Security with More Context
Topics:
Carbon Black
Damballa
IP address
IT Management
Bit9 + Carbon Black
David Monahan
Internet service provider
Scott Crawford
security
Security
Continue Reading
Thoughts on Splunk .conf 2014
This week, Las Vegas hosted some 3500 people at the MGM Grand to mark Splunk .conf14, the annual user gathering for Splunk customers, referred to as “Splunkers”. For those of you not in the tech industry, spelunking, or the act of exploring caves, may come to mind. The theme of the conference was not cave exploration, but data exploration; however, the analogy of cave exploration actually aligns very well. “Splunkers” are diving into their data, delving deep into places that many have never explored before. Each of them finding new and cool ways to use the data that they have been collecting for years, just-in-case they ever needed it.
Topics:
Data Mining
IT Management
David Monahan
Information security operations center
Microsoft SharePoint
Scott Crawford
security
Security
Splunk
Continue Reading
Dell SecureWorks and Risk I/O team up to deliver a better kind of Vulnerability Management
On April 23rd, 2014 Dell announced its new Vulnerability Threat Monitoring and Prioritization service delivered through the SecureWorks Counter Threat Platform. This managed service was created to expand the current Vulnerability Management offerings and increase customer value by creating the ability for customers to integrate their own vulnerability management systems. With the additional context provided through Risk I/O, remediation and mitigation prioritization are done less in a bubble of the operational environment and more in context with the Internet threat universe.
Topics:
Dell
Dell SecureWorks
Ed Bellis
Jeff Heuer
Managed services
IT Management
Customer
David Monahan
Scott Crawford
SecureWorks
Security
Vulnerability management
Continue Reading
Gaining Data Control with BYOD and Bluebox
What’s the issue with BYOD? Data Control… What’s the issue with Data Sharing? Data Control!
Topics:
Bluebox
BYOD
Caleb Sima
February
Mobile device management
IT Management
blueboxsecurity
Bring your own device
David Monahan
Scott Crawford
security
Security
Continue Reading
Symantec CyberWar Games Provide Valuable Cyber-Insight
The emotions oscillate between high frustration and high jubilation as I observe cyber-attack teams’ hacking activities against an unnamed financial institution…
Topics:
California
CyberWar Games
Kapuria
IT Management
David Monahan
Games
Mountain View California
Samir Kapuria
Scott Crawford
Security
Security Operations Center
Symantec
Continue Reading
CA Analyst Symposium- CA is Changing
- I had an interesting experience a few weeks ago. I went to NYC to brief with CA Technologies. I spent a full day speaking in group sessions with some of its top executives including CEO, Mike Gregoire, EVP Technology and Development, Peter Griffiths, EVP Strategy and Corporate Development Jacob Lamm, as well as a 1 on 1 meeting with GM of Security Management Mike Denning,. I found their discussions and candor on the changes and advancements within CA VERY refreshing; more so than I would have expected from what I perceived as a “monolithic behemoth” such as CA.
Topics:
Application programming interface
Mike Gregoire
Minder
cloud computing
IT Management
Bring your own device
CA Technologies
David Monahan
New York City
Peter Griffiths
Scott Crawford
Security
Continue Reading
Security Awareness Programs Are Not just For Compliance
I see a significant gap in not only how the need for Security Awareness training is perceived as needed but also in the general quality of the programs and training delivered vs other types of training. In many cases small companies avoid security awareness training due to ignorance, cost fears, or fears it will stifle their culture of creativity. This research project is structured to give CIO’s, CISO’s, and other security and IT managers the data to motivate them to provide in security awareness training programs thereby bringing about change in their organizations.
Topics:
Computer security
IT Management
Consultants
David Monahan
General and Freelance
Information security
Policy
security
Security
Security awareness
Training
Continue Reading
Last minute 2014 RSA Boycotts Hurt Attendees not RSA
With all of the negative attention that the NSA – RSA relationship (or deal) has been getting, many are fired up. If the deal went down anything like it has been reported by Reuters, then rightfully so. However, the last minute boycotts of the RSA event to show disapproval are a bit much.
Topics:
Boycott
EMC Corporation
Google
Business
IT Management
David Monahan
National Security Agency
Reuters
RSA
RSA Conference
Security
Continue Reading
ForeScout Technologies has a Knack for NAC (and more) with ControlFabric and CounterACT
Recently I briefed with ForeScout Technologies, a Network Admission/Access Control (NAC) vendor, to get an update on the CounterACT platform it has been delivering and developing for a few years and to see its recently announced ControlFabric technology. I thought it wise to take another look at NAC vendors and how they address BYOD, rogue, or non-compliant devices that can be the source of many compliance and security headaches including advanced/targeted threats.
Topics:
ForeScout
Mobile device management
NAC
IT Management
Bring your own device
ControlFabric
CounterACT
David Monahan
ForeScout Technologies
Network Access Control
Security
Continue Reading
Recent Surveillance “Revelations” Part 2- What can we do?
I hope you were able to read part 1 of this blog prior to coming to this part as it really sets the stage.
Topics:
FISC
IT Management
AnchorFree
David Monahan
Foreign Intelligence Surveillance Act
National Security Agency
Scott Crawford
Security
Supreme Court
TOR
United States
United States Foreign Intelligence Surveillance Co
Continue Reading
