Regulatory Compliance Management by Industry

SIEM monitoring can and should be a part of the network security posture of any organization. But what are your legal requirements? The answer varies by industry, with state and federal regulations mandating different levels of compliance for different types of organizations.

Legal requirements change often and can vary from one region to the other. While it’s always best to confirm before making any major decisions, there are some broad industry-specific considerations that should go into regulatory compliance management and planning:

  • Energy — Legal compliance requirements for businesses operating in the energy and utility sectors are outlined by the Federal

ISO 27001 for Law Firms

Law firms are increasingly becoming the target of cyber attacks, a fact that is partially due to the vulnerable working habits of many lawyers. It’s also due to the lack of strong regulation within the industry. Unlike financial and healthcare organizations, there are no federal regulations governing how data is stored and protected in law firms. And when you consider that many lawyers need to access information on the go, from a variety of devices, it’s clear why firms of all sizes have become a prime target for hackers.

One of best ways to keep your firm’s data safe is

How Safe Is Cloud Security?

securitytopimageOver the past year, the initial wave of enthusiasm for all things cloud-based has generally subsided, with a growing tide of skepticism emerging about the limits of its usefulness as a platform. Inspired by a number of high-profile security breaches, there is also skepticism about its security.

While part of this is the inevitable backlash that occurs whenever something becomes trendy in tech, the security issue in particular is one that merits further investigation. While it’s reasonable to question whether or not your important data is safe in the cloud, it’s equally important to not let a few well-publicized incidents

Traditional and Software-Defined Networking

Software-defined networking (SDN) has emerged as a buzzword in recent years, though many outside of the IT sector seem uncertain about what the term actually means — especially in relation to cloud computing.

What Is Software-Defined Networking?

Software-defined networking was pioneered between 2008 and 2011 by work done at Stanford University and the Nicira Company (now part of VMware). The basic premise behind SDN is that by separating control of network functions from hardware devices, administrators acquire more power to route and direct traffic in response to changing requirements.

As the demand for cloud computing increases, SDN has emerged as

Understanding Cloud Security Models

When speaking about security and cloud computing, it’s important to distinguish among three separate models for service delivery: public, private and hybrid. Each model represents a different approach to software-as-a-service and can have different security implications.

  • The public cloud — Public cloud service is delivered over the Internet, typically on a pay-per-use model, meaning a business is charged only for the storage it needs. Public cloud models are ideal for small- or medium-sized organizations that prioritize collaboration. Because public cloud service providers rely on existing infrastructure and architecture, migrating services is easy — however, businesses with special regulatory or