Skip to main content

Tag: zerotrust

11 articles

Security Leaders Exclusive: Dire Data Loss from Insider Risks

Security Leaders Exclusive: Dire Data Loss from Insider Risks

With 77% of organizations reporting insider-related data loss in the last 18 months, security leaders face an urgent, everyday threat: trusted accounts, routine workflows and sprawling cloud environments have turned normal work into ready-made exit ramps for sensitive data. Boards and CISOs are racing to plug identity and monitoring gaps before another incident costs money — and hard-won trust.

Analyst 207
Security Leaders: Exclusive Best Practices for Insider Risks

Security Leaders: Exclusive Best Practices for Insider Risks

Insider risks are a paradox: the people who make your organization work are also its most efficient vectors for data loss—77% of organizations reported insider-related losses in the past 18 months. Security leaders need practical, layered protections that stop the leak while preserving trust, blending technical controls, people practices, and clear governance.

Analyst 207
digital identity: Must-Have Defenses to Stop Risky Breaches

digital identity: Must-Have Defenses to Stop Risky Breaches

Now more than ever, digital identity—the credentials, attributes and policies for people, devices and AI agents—is the first and last line of defense; treat service accounts, API keys and tokens with the same rigor as human credentials to stop one misconfiguration or stolen token from triggering a catastrophic breach.

Analyst 207
zero trust Must-Have: Europe’s Best Security Playbook

zero trust Must-Have: Europe’s Best Security Playbook

Across Europe, zero trust has moved from IT theory to a regulatory expectation—policymakers now expect identity-centric controls, measurable resilience and risk reporting, so organizations must re-architect defenses or accept growing exposure. Start pragmatically: protect your highest-value assets with IAM, MFA and segmentation, measure risk reduction, and build privacy-preserving telemetry as you go.

Analyst 207
supply-chain data breach: Stunning Risky Wake-up Call

supply-chain data breach: Stunning Risky Wake-up Call

Renault and Dacia have informed customers that a supplier’s data exposure may have leaked personal information, a reminder that one weak third party can put many at risk. If you own a Renault or Dacia, now’s the time to check communications, watch for phishing, and demand clearer, faster protections from automakers and their vendors.

Analyst 207
mission success: Must-Have Infrastructure for Best Defense

mission success: Must-Have Infrastructure for Best Defense

When mission needs outpace aging IT and cloud, cyber, and AI demands collide, infrastructure becomes the strategic foundation for federal success—enabling agility, security, and trustworthy AI. Cloud Exchange 2025 made clear: treating infrastructure as a mission enabler, not a cost center, is the only way agencies can modernize, defend assets, and deliver better services.

Analyst 207
Google Threat Intelligence: Exclusive Risky 393-Day Breach

Google Threat Intelligence: Exclusive Risky 393-Day Breach

Google says China-linked attackers have quietly lived inside many enterprise networks since March — an average of 393 days — installing persistent backdoors and exfiltrating sensitive IP. The takeaway: tighten access, boost detection, and treat long dwell times as an urgent business and security priority.

Analyst 207
CSP diversity: Must-Have for Best Multi-Cloud Resilience

CSP diversity: Must-Have for Best Multi-Cloud Resilience

The Air Force’s Cloud One shows how CSP diversity can turn vendor lock-in into resilience, speed, and mission-fit—letting developers choose the best environment while keeping security and operations consistent. That flexibility pays off only with disciplined governance, shared tooling, and a culture that treats interoperability and observability as nonnegotiable.

Analyst 207
cybersecurity executive order: Must-Have Best Guide

cybersecurity executive order: Must-Have Best Guide

The June 6, 2025 cybersecurity executive order sets a clear — and urgent — blueprint for federal CISOs to accelerate zero‑trust, strengthen software supply chains, and tighten incident reporting while juggling legacy systems, budgets and mission continuity. Tune into our podcast briefing for practical steps, expert perspectives, and real-world playbooks to turn the EO from mandate into measurable security.

Analyst 207
Zero trust: Must-Have Best Practices for SLED Security

Zero trust: Must-Have Best Practices for SLED Security

As ransomware and credential-stuffing rise, SLED IT leaders are combining AI-driven zero trust with gamified training to tighten defenses and turn staff and students into an active line of defense.

Analyst 207
optimizing cloud use: Must-Have Best Federal Resilience

optimizing cloud use: Must-Have Best Federal Resilience

Moving to the cloud was just the beginning — federal agencies are now optimizing configurations, identity controls, and automation to boost security, lower costs, and keep critical services running during outages or attacks. Treating resilience as an ongoing practice helps isolate failures faster, speed recovery, and better protect citizens.

Analyst 207