AWS Permission Boundaries for Dummies
AWS permission boundaries are confusing. I know they are confusing because they confused me, and it took me a couple years to figure them out.
Rich Mogull
FireMon Blog
Cybersecurity Awareness Month
Back to Basics: Phishing, don’t take the bait.
Cyber safety is not just for CiSOs or techies anymore. Technology touches all of us nearly every single day, from baby nurseries to nursing homes.
FireMon
Back to Basics: What’s the Password?
Cyber safety is not just for CISOs or techies anymore. Technology touches all of us nearly every single day, from baby nurseries to nursing homes.
FireMon
When MFA Isn’t Enough
Rule number one in cloud security is, “thou shalt use MFA at all times”. Why? Well, when you move to public cloud computing you essentially
Rich Mogull
Schrödinger’s Misconfigurations
It’s Thursday afternoon and you’re getting ready to leave work a little early because… you can. But then that pesky Deliverer of Notifications (also known
Rich Mogull
Considering Change Management? Consider FireMon
Save time and resources while eliminating the risks caused by misconfigurations Good policy hygiene relegates access to only what is necessary to meet the
FireMon
How to Select a Change Management Solution
The most common threat to business security is accidental firewall and cloud security group misconfigurations. Manual rule and policy management of complex ground-to-cloud networks introduces
FireMon
Prevent Ransomware with Proper Policy Hygiene
Ransomware attacks typically begin with phishing, credential hacks, or taking advantage of open vulnerabilities. Once the bad actor is in, they rummage around looking for
FireMon
Ransomware is in the Cloud
Visibility, monitoring, and collaboration are the keys to identifying and preventing ransomware from breaching your infrastructure. In a world of rapid digital transformation, ransomware
FireMon
Implications of the AuthN/AuthZ Gap
It’s become common knowledge that in cloud, “identity is the new perimeter”. It’s a nice phrase that’s easy to toss into a presentation or an
Rich Mogull
Goodbye “Kill Chains”, Hello “Attack Sequences”
A few years ago at the RSA Conference I co-presented on the top cloud attack “kill chains”. Shawn Harris @infotechwarrior and I walked through what
FireMon
Visibility, Helping Win the Fight Against Ransomware
Organizations are steadily losing tens of millions of dollars to successful ransomware attacks, many of which were quietly paid and never made headlines. Ransomware can
FireMon
What You Need to Know About Ransomware in AWS
by Rich Mogull As bad of an issue ransomware is within data centers, I was a bit skeptical that it was much of a problem
FireMon
Security is Hard and the Stakes are High
How decision support tools improve both speed and accuracy for your security operations teams. It has been said that cybersecurity is an asymmetric game
FireMon
Ransomware Attacks – The new normal?
Once again, the world is hit with another ransomware attack. Similar to the WannaCry Ransomware cyberattack last month, Petya is causing major pain among thousands
FireMon
Looking Forward to Seeing You at RSA 2022
RSA 2022 is almost here! I’m excited to see many of you face-to-face in just a few weeks in San Francisco. So much has changed
Mark Beyers
Pragmatic Steps Toward Zero Trust
If you ask most security professionals to define zero trust, you’ll get an eye roll and an exasperated sigh. To many, it’s been little more
FireMon
Five Tips to Ensure Consistent Security Hygiene
Security’s focus has always been on protecting against complicated, advanced attacks. The battle between advanced attackers and awesome defenders makes for a great story. You
FireMon
Cloud Security Pioneer Rich Mogull Joins FireMon Team
It’s been seven months since DisruptOps joined FireMon with a mission to improve security outcomes by improving security
FireMon
FireMon Releases Timely Cisco Firepower Fix
One of the most critical aspects of proper security hygiene is keeping critical security devices patched and up-to-date. Firewalls and network security devices running outdated
FireMon
The Sweeter Side of PCI Compliance
I can’t tell you everything about security pros (be wary of those who claim they can), but I can tell you this: no one goes
FireMon
Scary Stories to tell in the Network
With Halloween around the corner, here’s a real-world firewall policy horror story. (For effect, feel free to imagine this in a scary, raspy cautionary voice…
FireMon
One Simple Misconfiguration. 2.9 Billion Users Down.
A routine maintenance error severs Facebook’s data centers from the Internet for over 6 hours On October 4, Facebook users suffered a complete outage affecting
FireMon
Introducing DisruptOps
Cloud security in your workflow. Not in your way. As we announced today, DisruptOps is now a part of the FireMon family of products. Perhaps
FireMon
Network Security Investment Priority #3: SASE
Global Independent Study of 500 Senior Level Respondents Provides Clear Picture for the Future of Network Security Resource Hub The Future of Network Security Full
FireMon
Network Security Investment Priority #2: Zero Trust
Global Independent Study of 500 Senior Level Respondents Provides Clear Picture for the Future of Network Security Resource Hub The Future of Network Security Full
FireMon
Network Security Investment Priority #1: Automation
Global Independent Study of 500 Senior Level Respondents Provides Clear Picture for the Future of Network Security Resource Hub The Future of Network Security Full
FireMon
New Research: The Future of Network Security
Global Independent Study of 500 Senior Level Respondents Provides Clear Picture for the Future of Network Security Where 500 Enterprises are Placing Their Chips for
FireMon
Uplevel Your Security and Networking Capabilities with Automation
The policies that are meant to protect us are becoming a threat vector themselves. As network complexity explodes and as enterprises incorporate SASE, MPLS, virtual
FireMon
Does SASE Make Sense in Your Environment?
Experts from FireMon and Zscaler discuss why you should consider SASE and what to know when you make the migration The world has gone hybrid.
FireMon
3 Steps to Reduce Risk in Your Cloud Environment(s)
How to Ensure Trust and Security in Enterprise IT and the Cloud Cloud security risk management should be the same as reducing risk on-premise. Yet
FireMon
Don’t Get Comfortable: More Change is Coming
The year that changed everything, and how you’ll have to adapt in 2021 The pandemic will burn itself out eventually, but its effects will not.
FireMon
How continuous monitoring protects complex environments by finding vulnerabilities
The Known Network How continuous monitoring protects complex environments by finding vulnerabilities as they occur Your network can be secure one minute and insecure the
FireMon
3 Ways to Streamline Network Security Automation That Will Transform Your Organization
Network security automation uses machines to programmatically execute security tasks. Typically, network security automation is used to manage the low-complexity, high-volume aspects of detection, investigation,
FireMon
FireMon Partners with Zscaler to Ensure Security and Compliance across the Entire Hybrid Network
As enterprises move to hybrid-cloud networks, they need more visibility than ever. But, despite the compelling business case of cloud-first technologies like Secure Access Service
FireMon
Why We’re Thankful for You – the Network Security Professional
Network security professionals are unsung heroes. Everyday news app visitors won’t read about all the wonderful work you’re doing. On occasion, they’ll only see and
FireMon
Network Security, Performance & Scalability | NSPM Success
In this series, FireMon looks at the five most important capabilities a network operator must build into their management practices in order to keep their
FireMon
Firewall Security: Is a Secure, Firewall-less Network Possible? Perhaps, But Why Would You?
Just three years ago, technology headlines were rife with articles stating that the firewall was obsolete. And maybe that prophecy would have come true if
FireMon
Myth #4: Real-Time Network Visibility Is Impossible
This is part 4 of a 4-part series addressing compliance myths and what you need to know about uniting compliance and security in a hybrid
FireMon
Adapt to Change: Network Policy Change Management | The 5 Critical Success Factors to Agile NSPM
In this series, FireMon looks at the five most important capabilities a network operator must build into their management practices in order to keep their
FireMon
COMPLIANCE & SECURITY MYTH #3: It’s Better To Block Than To Permit Access
This is part 3 of a 4-part series addressing compliance myths and what you need to know about uniting compliance and security in a hybrid
FireMon
Integrate Anywhere: API-First Agile Approach | The 5 Critical Success Factors to Agile NSPM
In this series, FireMon looks at the five most important capabilities a network operator must build into their management practices in order to keep their
FireMon
See Everything: Continuous Visibility Across Your Hybrid Network – The 5 Critical Success Factors to Real-Time Security Policy Management
We’re in the middle of a business model revolution. Transformation, automation, and globalization are enabled by emerging technologies like artificial intelligence, IoT, mobile, and cloud-native
FireMon
Myth #2: Compliance Is Only Urgent When There’s an Audit
This is part 2 of a 4-part series addressing compliance myths and what you need to know about uniting compliance and security in a hybrid
FireMon
We Heard You. An Agile Approach to Network Security Policy Management
Today we announced the industry’s first agile network security policy platform which marks both the delivery of core new features and a statement of our future direction. We believe these new features, along with a compelling roadmap, sets a new standard for NSPM and provides our customers with the capabilities they need to enable their businesses to move faster while staying secure. Enterprise security must manage complex and dynamic policies and processes on massively distributed hybrid networks all while keeping up with increasing demands for speed and innovation. And all this must happen while defending against an evolving threat landscape and an expanding attack surface.
FireMon
Preventing Security Misconfigurations: Change Management and Compliance
It’s an enormous and unending daily challenge to make sure that changes to firewall policies are not just executed quickly and efficiently, but changes don’t
FireMon
Hybrid Cloud Security Best Practices: Top Cloud Security Challenges
Without question, public cloud providers have made the deployment of applications and services simpler than ever. But while complexity has never been easier, security has
FireMon
Building Security into Your Cloud-First Business
Key Terms Cloud Software, services, and databases that run on a shared infrastructure. Cloud-first The idea that organizations should try to run as many of
FireMon
Security Teams Unprepared for COVID-19 Cyberthreats According to Primary Research Study
Government departments and contractors are rapidly undergoing digital transformations to public and hybrid cloud infrastructures, and now more than ever require increased network visibility to
FireMon
Top 5 Network Security Challenges in 2021 and Beyond
There are a lot of theories about which network security challenge is the most important at any given time. The issue is highly subjective, particularly
FireMon
Network Vulnerability: It May Not Mean What You Think It Means
Key Terms Network vulnerability A flaw in computing environment or associated processes that can potentially be exploited by malicious actors. Context The circumstances around a
FireMon
Global SAAS Leader Chooses FireMon to Automate Network Security. Here’s Why.
In the age of clouds and hybrid clouds and multi clouds, effectively managing network and firewall policy and compliance isn’t a simple matter for any organization.
FireMon
Why Security Misconfiguration Are Higher During Covid-19
There are good reasons your IT security team may be looking a bit sleep-deprived. In addition to the stress of the COVID-19 pandemic everyone is
FireMon
Security Misconfigurations in the Pandemic – and What to Do About Them
Change has never been a friend of network security. Neither has complication. Right now, we have too much of both. The Covid-19 pandemic has resulted
FireMon
Without automation, security gets harder during a business disruption
FireMon’s 2020 State of Hybrid Cloud Security Survey found that 69.5 percent of respondents have a security team of just 10 people or fewer. And most manage both on-premise network security and
FireMon
Network visibility is a differentiator for innovation
Before working for FireMon, I was a cybersecurity professional at a Fortune 500 where I inherited a lot of firewalls with a lot of rules.
FireMon
Demonstrating Continuous Compliance Across the Hybrid Enterprise
Change. The regulatory environment is always changing and staying on top of it with an IT landscape that is growing and evolving into hybrid cloud
FireMon
The Best of Firewall Management – Exporting Firewall Rules & Objects
In this series, FireMon leadership shares their favorite features of the latest release of our firewall management solution, Security Manager. Sometimes it’s the little things
FireMon
Firewall Policy Basics – How to Verify Stealth Rules
Updated – January 2017 The firewall stealth rule is the explicit rule near the top of the policy denying access to the firewall beyond
FireMon