Zero Trust began as an abstract concept in 1994 and has evolved into an established security approach. More than 800 information security decision-makers around the world were surveyed to compile our latest report, The State of Zero Trust Security 2023. This report takes a detailed look at where Zero Trust adoption stands today, providing answers…

Security. It’s a hard business. I’m not just talking about the endless patching, monitoring, and training. The constant sprint to remediate when a new CVE (Common Vulnerability and Exposures) notification drops, or the lingering fears that you’ll be called back to the office on your downtime to deal with a crisis.  No, it’s hard because it’s not a…

We live in a time where remote work, BYOD trends, and a complex tech stack have become the norm. Identity providers play a vital role in this landscape; they serve to unite and secure your organisation. As the horizontal layer that spans your entire system, they provide a unique, single point of visibility and access control at the app level. So,…

Understanding your customer is a golden rule you’ll find on the first page of any marketing primer. The better you know their needs, goals and challenges, the more effectively you can serve them with resonant content and messaging. But in today’s privacy-conscious times, capturing this information is getting trickier than ever. Third-party cookies…

The newly updated NIS2 Directive marks a significant turning point in Europe’s fight against cybercrime. When organisations adhere to these regulations, they can reduce the risk of data leaks, safeguard sensitive information, and ensure the security of critical IT systems. Failure to comply, however, can lead to devastating financial penalties…

The countdown to comply with the new Network and Information Systems (NIS2) Directive is well underway. At present, organisations in EU Member States have until 17 October 2024 to implement the relevant changes to their security systems and strategies. Failure to meet the requirements after this date could lead to fines of up to €10 million or 2%…

At the end of 2022, the European Parliament approved two new legislations: the second version of its Network and Information Systems Directive (NIS2) and the Digital Operational Resilience Act (DORA). As of 18th October, 2024, EU Member States are required to adopt NIS2 measures, while DORA will be enforced on 17th January, 2025. Both of these…

60 books a year. Five books a week. 50 pages a day. That’s how much the average business leader is supposed to read [1] – and while it may not seem all that much on paper, the truth is that many of us (non-business leaders included) simply don’t have enough time in the day. After we’ve driven, worked, walked the dog, cooked, and cleaned, lying in…

One risk IAM administrators are very familiar with is having a lack of control over credentials. Once credentials that grant privileged operations are lost or shared without permissions, they can be used to give unauthorised people elevated access to resources. A reasonable prevention strategy is to use a Just-in-Time (JIT) access model to make…

The password has been much maligned since its creation, and deservedly so. Even Fernando Corbató, the MIT computer scientist who created the password, said it had become “kind of a nightmare.” However, Corbató could not have conceived of the hundreds of passwords we now use and the proliferation of complex rules to overcome the weakness of the…