Blog

 

Biden’s Cybersecurity Announcement – Some Subtle Points are Being Lost

Biden’s Cybersecurity Announcement – Some Subtle Points Are Being Lost – Stel Valavanis The Biden Administration recently announced a new, five-pillared cybersecurity strategy that outlines not only new Federal initiatives to strengthen the defense of public infrastructure and increase federal cybersecurity capability, but also details changes that will greatly impact the private sector, cybersecurity leaders, and practitioners of today and tomorrow. It is important to remember that this announcement is a policy document, not an executive order, so while it does signal that changes are coming, it will remain difficult to prepare for specific parts of this shift until further…

onShore Security Endorses Plans to Curb Proliferation of Cyber Mercenaries

onShore Security is proud to announce that, as members of the Cybersecurity Tech Accord, we have signed onto the principles released by the group to state our intent to do whatever we can to help curb the training, recruitment, and deployment of cyber mercenaries.  The Cybersecurity Tech Accord, a signatory group of cybersecurity organizations, has responded to the developments in the US cybersecurity strategy by calling for an agreement to counter and prevent the proliferation of cyber mercenaries, both in service of foreign governments and our own. US-based cybersecurity operations have historically not acted offensively, and the infrequent “hack backs”…

onSecurity – Better Security Through Better Metrics

Episode 15: Better Security Through Better Metrics Planning and enacting a proper cybersecurity strategy requires data, usually in the form of metric data. These tracked statistics, qualitative and quantitative, are analyzed and organized into stories that can help a security operation see vulnerability and places to focus their attention. Metrics, however, can just as easily distract leadership and waste effort and expense. Knowing which metrics to consult and when is as valuable as tracking the data in the first place.  Edward Marchewka, founder of 3LC Solutions, joins onSecurity to talk with Stel about what metrics are worth basing decisions on,…

onSecurity – Creating Cybersecurity Media

Episode 14: Creating Cybersecurity Media One of the most important parts of the cybersecurity community’s work to protect data is to educate their clients and inform the public of known risks and specific threats to their personal and professional data. In a space already filled with disinformation and out-of-date ideas, it is vital that leaders, practitioners, and experts know how to communicate essential security information in clear, credible, and actionable terms. Kyle McNulty joins Stel on this episode of onSecurity to talk about methods and modes of cybersecurity content creation and developments in the media landscape

onSecurity – Capture the Flag!

Episode 13: Capture the Flag! Cybersecurity professionals are constantly honing their skills and adding to their knowledge set. Still, to stay ahead of attackers, defenders must make sure to continue to think outside of the box, see the obscure, and practice their ability to solve problems. Capture the Flag competitions are a popular exercise at cybersecurity events, offering an array of riddle-like security challenges. Blue Team Con 2022 hosted such a competition for attendees and it was won by onShore Security analyst Chris Spankroy. Chris joins Stel to talk about his experience with Blue Team Con’s Capture the Flag competition,…

onSecurity – Building the Cybersecurity Community of Tomorrow

Episode 12: Building the Cybersecurity Community of Tomorrow Cybersecurity practitioners, as defenders of information, benefit from the fact that they are, in some ways, one large team, and the sharing of information and best practices as an industry and a community elevates everyone’s ability to protect their data. The passing of experience and expertise among peers is important, but staying ahead of emerging cyber threats requires recruiting and training the next generation. John Johnson joins onSecurity to discuss CornCon, the cybersecurity convention he founded in Davenport, Iowa. CornCon’s growth is in large part due to it filling a growing demand for regional…

onSecurity – Leading with Cybersecurity

Episode 11: Leading with Cybersecurity onShore Security’s podcast, onSecurity, explores a variety of topics in the cybersecurity field. Cybersecurity practice is typically the territory of experts in the field, but for large organizations, cybersecurity is a board-level concern and should factor into decisions in every department, from security and risk to marketing and customer experience. Cybersecurity can seem a big obstacle and is a large source of risk for the unaware or ill-prepared, but for those leading with cybersecurity, it offers a new way to think about every part of your organization, at every level. For our eleventh episode, Robert Barr joins onSecurity…

onSecurity – Cyberpeace

Episode 10: Cyberpeace onShore Security’s podcast, onSecurity, explores a variety of topics in the cybersecurity field. The image of the lone wolf hacker or of small-time crooks lit only by laptop glow in their basements is long out-of-date. Cyber attacks, ones that impact civil society, now commonly derive from governmental organizations or groups working for government and military agencies, and their targets are not restricted to the public sector. Total warfare is becoming the prevailing tactic on the growing cyber front of global geopolitical conflict and everyone is caught in the crossfire. For our tenth episode, John Hering joins onSecurity…

onSecurity – Governance, Risk, and Compliance

Episode 9: Governance, Risk, and Compliance At the Enterprise level, many discussions and decisions about cybersecurity and IT focus on the operational capability of the organization and bad actors that may interfere. As cyber operations become a larger part of business operations as a whole, organizations now must also consider regulatory compliance or risk losing the ability to operate and even face potential damaging liability. Chris Johnson, Sr. Director of Cybersecurity Programs at CompTIA ISAO, joins onSecurity to discuss the importance of GRC – governance, risk, and compliance. Though implementation of GRC in an organization may offer some hurdles, this…

onSecurity – Blue Team Con

Episode 8: Blue Team Con In cybersecurity, the importance of teamwork, collaboration, skill sharing, and peer review cannot be overstated. When it comes to cyber defense, blue teams are in competition against the criminal elite and cyber attackers worldwide, but draw strength from working and communicating with each other. Cybersecurity conventions are increasingly popular places for the industry’s most meaningful discourse. On our eighth episode, Frank McGovern, Cybersecurity Architect at StoneX, joins onSecurity to discuss the gap he saw in the cybersecurity convention scene and his work to organize Blue Team Con along with our host, BTC co-founder and onShore…

onSecurity – Zero Trust

Episode 7: Zero Trust onShore Security’s podcast, onSecurity, explores a variety of topics in the cybersecurity field. Our seventh episode focuses on practicing the zero-trust philosophy to harden cybersecurity targets. As cyber operations at the Enterprise level expand to defend against cyberattacks, hackers seek easier targets among enterprises. Chase Cunningham joins onSecurity to talk about his effort to raise the maturity level of cybersecurity of targeted companies and how organizations are adopting the use of a zero-trust strategy at every level.

onShore Security Named to MSSP Alert’s Top 250 MSSPs List for 2022

MSSP Alert, a CyberRisk Alliance resource, has named onShore Security to the Top 250 MSSPs list for 2022 (http://www.msspalert.com/top250). The list and research identify and honor the top MSSPs (managed security service providers) worldwide. The rankings are based on MSSP Alert’s 2022 readership survey combined with the site’s editorial coverage of MSSP, MDR and MSP security providers. The sixth-annual list and research track the MSSP market’s ongoing growth and evolution. “To protect our clients and their data from the constant barrage of new cybersecurity threats, our organization strives to stay ahead of bad actors and to be prepared for future…

onShore Security sponsors NYC Pinball Championships 2022

At onShore Security, we believe that security gives us freedom. We empower organizations to use that freedom to do what they do best. We support some of the biggest names in healthcare, banking, construction, and education. This weekend, we support some of the biggest names in pinball! onShore Security is proud to sponsor the NYC Pinball Championships! “The New York City Pinball Championships delivers 3 spectacular tournaments, the Open + B Division NYCPC Championship, Classics, and Dahlia Rowan Memorial Women’s Championship. All tournaments bring world-class competitive pinball excitement to the heart of New York City, and will be broadcast live…

onShore Security CEO Stel Valavanis to Join PDA Cybersecurity Committee

Cyberleader and CEO of onShore Security Stel Valavanis has been asked to join the cybersecurity committee of the Private Directors Association, a national non-profit business association with more than 3000 members, including executive board members, company owners, officers of family-owned businesses and more. Its mission is to advocate for and teach board formation and governance and to create a network of business owners and leaders. One of the fastest growing areas of the organization is the cybersecurity leadership team, offering education such as webinars and white papers, as well as offering guidance in long-term strategic planning to improve security posture….

onShore Security Partners With Palo Alto as MSSP

onShore Security, a leader in MDR services with its Panoptic Cyberdefense® platform, is pleased to announce that the company has been admitted to Palo Alto Networks’ MSSP program, enabling them to package Palo Alto tools into a managed solution, delivering optimal outcomes for clients with critical cloud-hosted infrastructure. onShore Security, will be expanding its managed cybersecurity services powered by PAN’s best-of-breed technologies. They are beginning this new relationship by delivering managed Cortex and Endpoint solutions and will follow with Prisma Cloud and SASE-managed solutions in the future. onShore Security CEO Stel Valavanis says, “Palo Alto Networks has long been in…

onSecurity – Developing Cybersecurity Products

Episode 6: Developing Cybersecurity Products onShore Security’s podcast, onSecurity, explores a variety of topics in the cybersecurity field. Our sixth episode focuses on the development of new cybersecurity products and processes. Data analysis is a pillar of any mature cybersecurity operation and is the process that transforms information into intelligence. As cybersecurity advances, engineers and analysts must work together to move forward with speed and safety. Anil Mudholkar, Head of Product Development for onShore Security, joins Stel to talk about the current state of cybersecurity products.

onSecurity – Benefits and Pitfalls of Automation

Episode 5: Benefits and Pitfalls of Automation onShore Security’s podcast, onSecurity, explores a variety of topics in the cybersecurity field. Our fifth episode focuses on the rise of automation in cybersecurity. As automated processes augment the capabilities of cybersecurity operations, it is important not to overlook the importance of the human element. Understanding the benefits of automation in cybersecurity requires an examination of potential pitfalls and the ways that security teams fill in the gap.  Joe Gresham, Product Development specialist for onShore Security, joins Stel to talk about the benefits and pitfalls of automation in cybersecurity.

onSecurity – The Future of Cybersecurity

Episode 4: The Future of Cybersecurity onShore Security’s podcast, onSecurity, explores a variety of topics in the cybersecurity field. Our fourth episode focuses on the future of cybersecurity. As cybercrime adapts to new cyberdefense products and processes, security must stay one step ahead. Developing new ways of thinking and doing in defending data will require security teams to be agile and imaginative. Craig Brozefsky, Senior Software Engineer Consultant for onShore Security, joins Stel to talk about his experience at Cisco, projects with onShore, and the future of security.

onSecurity – Marketing Cybersecurity

Episode 3: Marketing Cybersecurity onShore Security’s podcast, onSecurity, explores a variety of topics in the cybersecurity field. Our third episode focuses on marketing cybersecurity. As cybercrime’s impact on daily life continues to grow, it becomes even more important to educate our leaders and help employees at every level of your organization understand the importance of cyberdefense. Founder of Hesser Communications, Amy Hesser joins Stel Valavanis to discuss how to draw attention to security and inspire the action needed to combat cyberattacks.

Joe Gresham at Blue Team Con 2022

onShore Security’s Joe Gresham will be speaking at Blue Team Con 2022, August 27-28th in Chicago, Illinois. The abstract for his talk, Why I Keep Building My Security On Open Source Year After Year, can be seen in Track 2 of Blue Team Con’s speaking schedule.

onSecurity – Beyond Endpoint Security

Episode 2: Beyond Endpoint Security onShore Security’s podcast, onSecurity, explores a variety of topics in the cybersecurity field. Our second episode centers on cybersecurity beyond the endpoint. As network perimeters become “squiggly”, the focus must shift from endpoint management to the data itself. Founder and CEO of Nullafi, Rob Yoskowitz, joins Stel Valavanis to discuss how changes in people and processes require cybersecurity operations to reconsider who has access to what and when.

onSecurity – Compliance and Security

Episode 1: Compliance and Security onShore Security CTO Steven Kent joins Stel to discuss the intersection of compliance and security. As the author of an oft-cited saying at onShore, “security is a process, not a product”, Steven Kent is the reason that onShore has been able to satisfy the complex needs of clients in the banking industry.

Detection is Your Super Power!

onShore Security CEO Stel Valavanis recently spoke to the Illinois Chamber of Commerce to discuss the importance of detection. Protecting a network against a hacker used to mean that you had to be on your game 100%, but the hacker only needed to be right once to get in. With detection, however, the tables are turned, and they’re on your territory. Detection becomes your advantage, as they have to avoid making any mistakes and all you have to do is watch and wait.

onShore Security Announces Machine Learning Cluster

The following is a press release by onShore Security. Click here to read the original release.  onShore Security announces a new machine learning cluster for their Panoptic Cyberdefense® platform. This cluster is a substantial step forward for onShore, as it increases their machine learning capabilities. These new capabilities include better-informed tuning, modeling larger data sets, generating more high-fidelity signals for analysis, and speeding up the process for analysts to normalize and match. These new capabilities mean that onShore clients will be seeing improved outcomes through better anomaly detection, a shorter window of time for zero-day detection, and quicker profiling of client…

WFH is MORE Secure

WFH is MORE Secure – Stel Valavanis It’s safe to say at this point in the pandemic remote work is here to stay. Many companies are deciding to keep remote work and hybrid options in place for the foreseeable future, and millions of workers are demanding this kind of flexibility.  Studies are showing that employees are maintaining, or even increasing productivity at home. Top reasons why include: fewer interruptions, quieter work environments, the lack of time and expenses associated with commuting, and more comfortable workspaces. Now knowing that remote work will likely be here for the long haul, companies need…

1 2 6