RSI Security

Blog

  • How Many PCI Controls are There?

    How Many PCI Controls are There?

    Companies that process credit card or electronic payments face constant exposure to cybercrime risks. Hackers frequently target cardholder data for theft and fraud, while payment processors and merchants can also become victims of large-scale cyberattacks. To reduce these threats, the Payment Card Industry Security Standards Council (PCI SSC) developed a comprehensive set of PCI controls, security measures designed to protect payment environments and safeguard sensitive financial data.

    But this raises an important question: how many PCI controls are there, and what do these controls actually involve?

    (more…)

  • What is DLP (Data Loss Prevention) in Cybersecurity?

    What is DLP (Data Loss Prevention) in Cybersecurity?

    If your organization handles sensitive data that’s subject to regulatory compliance or other security requirements, you may be required to (or benefit from) implementing data loss prevention (DLP) measures. Many organizations rely on DLP to mitigate data breaches and optimize their data security posture. So, what is DLP in cyber security? Let’s discuss. (more…)

  • What is a NIST Patch Management Policy?

    What is a NIST Patch Management Policy?

    Deployment of security patches helps mitigate threats to your organization’s systems, ensuring ongoing cybersecurity protection. Patch management organizes and streamlines these deployment processes to minimize gaps in cybersecurity defenses. A NIST patch management policy can help strengthen your organization’s deployment efforts. Read on to learn more. (more…)

  • Insider Threats 101: How to Keep Your Organization Protected

    Insider Threats 101: How to Keep Your Organization Protected

    In cybersecurity, many of the threats most commonly talked about come from external attackers. Hackers and cybercriminals are often looking for ways to enter into your systems unnoticed to access and change, steal, or otherwise compromise your data. But insider threats can cause just as much damage as outside attackers—in some cases, they may be even more dangerous. (more…)

  • How to Prevent Password Spraying

    How to Prevent Password Spraying

    Systems for preventing and mitigating cyberattacks are constantly adapting to attackers’ innovations and ways of bypassing or undermining protections. This is one reason that password spraying emerged as a threat, in response to one of the most effective defenses against brute force attacks. So, what is password spraying, and how can you prevent it? (more…)

  • What Are the Different Security Protocols for Wireless Networks?

    What Are the Different Security Protocols for Wireless Networks?

    wireless

    Wireless networks are becoming more common in businesses and homes. Most mobile devices now come with a wireless network associated with the device’s brand or carrier. There are also public hotspots at restaurants, coffee shops, and airports to name a few. This makes it easier for us to catch up on work or with friends online.

    (more…)

  • What is Cybersecurity Infrastructure as a Service?

    What is Cybersecurity Infrastructure as a Service?

    Cybersecurity infrastructure as a service (IaaS) is a robust cloud security model that can help secure your organization’s digital cloud environment. Regardless of your size or industry, adopting an IaaS cybersecurity approach will help improve security across your cloud infrastructure. Read on to learn how it works. (more…)

  • Guide to Security Governance in Cloud Computing

    Guide to Security Governance in Cloud Computing

    Almost all organizations use some form of cloud storage or computing for their day-to-day operations. Yet, as convenient as they are, cloud environments come with risks for all assets, systems, and users that come into contact with them. This is why thoroughly understanding security governance in cloud computing is essential for stakeholders at all organizations. (more…)

  • Identity and Access Management Tools – Open Source vs Professional

    Identity and Access Management Tools – Open Source vs Professional

    Identity and access management (IAM) is critical to mitigating access control risks and safeguarding sensitive data environments. Although open-source identity and access management tools and those managed professionally provide IAM protections, each has pros and cons pertaining to cybersecurity risk management. Read on to learn more.

    (more…)

  • Patch Management & WannaCry

    Patch Management & WannaCry

    The WannaCry attacks reached a record high in this past week and the root cause of the chink in the Cybersecurity amour can be traced primarily back to lack of active Patch Management. Active Patch Managementreduces attack surface & improves security posture. Reinforce this essential link in your holistic Cybersecurity chain.

    (more…)