Drata’s Post

Want to streamline your security posture with automation and insights? Join our ServiceNow Security Operations experts for a FREE webinar! http://spr.ly/6040eX6Xe They'll deep dive into key SecOps applications: ️- Security Incident Response - Threat Intelligence - Vulnerability Response Learn how to: - Proactively identify and respond to threats - Improve efficiency and collaboration across security teams - Gain valuable insights for better decision-making P.S. Can't attend live? Register anyway - recordings will be sent to all attendees! #ServiceNow #SecurityOperations #SecurityWebinar

Devsecops Security Checklist.

Black Hat 2024 will focus on the importance of observability for DevSecOps and scaled security posture management. In Nirmeet Bhogill's Black Hat 2024 guide, she covers AI for effective DevSecOps, converging observability and security, and cybersecurity analytics for threat detection and response. Check it out, here.

Black Hat 2024 will focus on the importance of observability for DevSecOps and scaled security posture management. In Nirmeet Bhogill's Black Hat 2024 guide, she covers AI for effective DevSecOps, converging observability and security, and cybersecurity analytics for threat detection and response. Check it out, here.

Penetration testing served us well, but the security landscape demands more. DevSecOps offers a collaborative approach, integrating security throughout the development lifecycle. This post explores: - Why traditional methods fall short - How DevSecOps empowers proactive security - The benefits of a collaborative approach Ready to evolve your security strategy? Read the full article here: https://lnkd.in/enNQAqGK #DevSecOps #Security #Collaboration #securitystrategy

🔍 Threat Detection and Response is important but where should you start? ❗️ We spoke to Andrew Tabona, Head of Cyber Threat Management and Incident Response at a Fortune 500 about this. 🔍 Build Out an Organizational RACI: - Clearly define who is responsible for what. This helps in rapid containment and response. - Predefine roles and responsibilities to ensure swift action during an incident. 🔥 Understand Your IR Team's Scope: - Clarify with the business how much the Incident Response (IR) team can do autonomously to "put out the fire." - This understanding can make all the difference in stopping the bleeding quickly. 🛠️ Map Out Team Responsibilities: - What does the DevOps team handle? - Who is responsible for the application, server, and account ownership? -Identify who gathers the business context and logs, and who rotates compromised keys. This chat with Andrew was very valuable as Andrew shared a lot of experiences and learnings, we have linked the full episode in the comments below #cloudsecurity #threatdetection #threatresponse

From picking the right projects to mastering security testing, check out what industry expert Abhay Bhargav has to say about nailing it in #DevSecOps! Catch the full video here: https://lnkd.in/dzGSa9Ga And hey, why stop there? Dive into our FREE course "Roadmap to DevSecOps for your Organization" to really transform your operations. Learn to integrate security seamlessly at every stage for better agility and ironclad defense against threats. Get started now - https://lnkd.in/dtek9pMM #SecurityAutomation #DevOps #training #appsec #security

🚀 Excited to share The DevSecOps Security Checklist! 🚀🔐 As a cybersecurity expert, I'm always on the lookout for resources that can strengthen our defense mechanisms and streamline security operations. That's why I'm thrilled to introduce a comprehensive checklist that should be on every DevSecOps team's radar. 📖 This booklet is a goldmine for ensuring that security is integrated at every stage of your development, deployment, and operations. Whether you're starting out in DevSecOps or looking to fortify your existing protocols, this checklist is a must-read. 🔍 Inside, you'll find actionable steps that cover: Early integration of security in CI/CD pipelines Automation of security checks Best practices for secure coding Strategies for real-time vulnerability assessments And much more! 💡 Remember, security is not just about tools and technologies; it's about culture, practices, and continuous improvement. 🤝 I'd love to hear your thoughts on this checklist and discuss how we can further the field of secure software delivery together. #DevSecOps #CyberSecurity #InfoSec #SecureCoding #CI/CD #VulnerabilityManagement #SecurityAutomation #ContinuousImprovement #SoftwareDelivery #ITSecurity #CyberResilience #RiskManagement #SecurityCulture

🔐 𝗖𝘆𝗯𝗲𝗿 𝗧𝗵𝘂𝗿𝘀𝗱𝗮𝘆 - 𝗖𝗵𝗮𝗽𝘁𝗲𝗿 𝟯 𝘾𝙝𝙖𝙥𝙩𝙚𝙧 3: 𝙄𝙣𝙩𝙧𝙤𝙙𝙪𝙘𝙩𝙞𝙤𝙣 𝙩𝙤 𝙄𝙣𝙘𝙞𝙙𝙚𝙣𝙩 𝙍𝙚𝙨𝙥𝙤𝙣𝙨𝙚 𝗢𝘃𝗲𝗿𝘃𝗶𝗲𝘄: Welcome to Chapter 3! In the ever-changing landscape of cybersecurity, incidents are inevitable. How we respond can make all the difference. In this chapter, we'll explore the fundamentals of incident response, empowering you to navigate the digital battlefield and mitigate the impact of security incidents. 𝗪𝗵𝗮𝘁 𝗶𝘀 𝗮𝗻 𝗜𝗻𝗰𝗶𝗱𝗲𝗻𝘁 𝗥𝗲𝘀𝗽𝗼𝗻𝘀𝗲??? → Managing and mitigating the impact of security incidents on information systems Refer to the document for a more comprehensive view on Incident Responses by the National Institute of Standards and Technology (NIST): https://lnkd.in/eFsHNFvx 📢 𝗞𝗲𝘆 𝗧𝗼𝗽𝗶𝗰𝘀 𝗘𝘅𝗽𝗹𝗼𝗿𝗲𝗱: 𝟦 𝗆𝖺𝗂𝗇 𝗉𝗁𝖺𝗌𝖾𝗌 𝗍𝗈 𝗍𝖺𝗄𝖾 𝗂𝗇𝗍𝗈 𝖺𝖼𝖼𝗈𝗎𝗇𝗍 • Phase 1: Preparation • Phase 2: Identification (Detection and Analysis) • Phase 3: Containment, Eradication and Recovery • Phase 4: Post-Event Activity  𝖢𝗋𝖾𝖺𝗍𝗂𝗇𝗀 𝖺𝗇 𝖨𝗇𝖼𝗂𝖽𝖾𝗇𝗍 𝖱𝖾𝗌𝗉𝗈𝗇𝗌𝖾 𝖯𝗅𝖺𝗇:    - Includes; 1. Roles & Responsibilities 2. Communication Plan 3. Incident Class & Escalation 4. Incident Handling Procedures 5. Training & Awareness The 2017 Maersk NotPetya incident demonstrates the impact of a well-prepared response plan. 📄 𝗦𝘂𝗺𝗺𝗮𝗿𝘆 𝗼𝗳 𝗜𝗺𝗽𝗼𝗿𝘁𝗮𝗻𝘁 𝗜𝗻𝗳𝗼𝗿𝗺𝗮𝘁𝗶𝗼𝗻: - 𝖲𝗐𝗂𝖿𝗍 𝖣𝖾𝗍𝖾𝖼𝗍𝗂𝗈𝗇 𝖺𝗇𝖽 𝖱𝖾𝗌𝗉𝗈𝗇𝗌𝖾: Early detection and rapid response are critical in minimizing the impact of security incidents. - 𝖳𝖾𝖺𝗆 𝖢𝗈𝗅𝗅𝖺𝖻𝗈𝗋𝖺𝗍𝗂𝗈𝗇: An effective incident response team and clear communication are vital components of successful incident management. - 𝖯𝗋𝖾𝗉𝖺𝗋𝖺𝗍𝗂𝗈𝗇 𝗂𝗌 𝖪𝖾𝗒: Proactive planning, including creating an incident response plan and conducting exercises, is essential for mitigating the fallout of security incidents. 𝘚𝘵𝘢𝘺 𝘵𝘶𝘯𝘦𝘥 𝘧𝘰𝘳 𝘊𝘩𝘢𝘱𝘵𝘦𝘳 4, where we'll explore 𝘌𝘴𝘴𝘦𝘯𝘵𝘪𝘢𝘭 𝘚𝘦𝘤𝘶𝘳𝘪𝘵𝘺 𝘛𝘦𝘤𝘩𝘯𝘰𝘭𝘰𝘨𝘪𝘦𝘴. Let's prepare for the unexpected! 💻🚨  #IncidentResponse #DigitalBattlefield #CybersecurityPreparedness #Chapter3 #NIST #CyberThursday

If you're a security architect, and you believe that doing business-driven security architecture is really *the* way to establish the right foundation for an effective security program... ...but you haven't yet figured out how to successfully build out a security architecture practice that's using SABSA® in a practical way... I might be able to help. Because one of the disconnects I see is that the people who you need to help you – namely your CISO or whomever is the head of your security program – may see the value of changing the way you work for *you*... ...but they don't see the value that it brings to *them.* And that's the problem. Because if they don't, then it'll be extremely difficult – if not impossible – for them to support you doing all the crazy things you'll need to do in the process. Things like: * Adopting a dramatically different definition of security and risk than is used by the rest of the industry * Getting rid of all the industry and platform-specific "reference architectures" and building out a proper ESA instead * Truly "shifting left" your security team's involvement in project delivery (and getting rid of the stage-gate, security checkpoints in the process) I mean, these are the equivalent of doing witchcraft in front of the Pope as far as their concerned, because they're really going to struggle to see how any of this can help them. That's why I put together a new program – especially for CISOs and security leaders – so they can experience these things for themselves, "hands on"... ...while at the same time, addressing one of the biggest issues they face—not only every day, but especially every time they present to the Executive Team and the Board. And the upside? Well, once they've been through this program, they're going to be a lot more open to actually adopting business-driven security architecture... ...because they'll have already started the process themselves! Check it out here: https://lnkd.in/guAGS4Tk #CISO #cyber #infosec #SecurityLeader #SecurityLeadership #AgileSecurity #SABSA #SecArch #RiskManagement #CyberRisk #ExecutiveTeam #SecurityValue #BusinessDrivenSecurity #DevOps #DevSecOps #AgileDelivery #Agile #ShiftLeft