While organizations have been supporting work-from-home employees long before the COVID-19 pandemic lockdowns, the abrupt shift to everyone working from home still stressed enterprise architectures. Security teams deployed new controls and relaxed some policies so that people could keep working. As enterprises modernize their security architecture to accommodate the permanently remote employees, they are exploring zero trust, secure access service edge, new BYOD policies, and endpoint controls.

The information submitted is collected by both Informa Tech and our sponsor. Click here to view our sponsor's privacy policy.

This report is sponsored by:

Edge computing, which is simply computer power, applications, and storage shifted closer to the sources of data, promises to speed on-site decision-making and enable digital transformation. It also dramatically increases the attack surface. Edge computing is still new enough that security teams have to figure out for themselves how to secure it.

This report covers:

• Assessing the attack surface
• Monitoring data, devices, applications, and networks
• Extend other security aspects to the edge

Security leaders need to provide adaptive trust and conditional access based on identity, operational and threat context, and risk appetite. Translating the zero-trust vision to implemented reality requires MFA, centralized identity, software-defined security, and analytics, to name a few.

What's Inside:

• Navigating the zero-trust journey
• Explanation of the OMB zero-trust deadlines
• How zero-trust feeds into SASE
• Understanding modern privileged access management

Threat actors ramped up malware attacks over the past 12 months to try and take advantage of gaps in enterprise security caused by accelerated use of cloud services and remote work models. The attacks left many IT and cybersecurity leaders feeling insecure about their organization's security posture. Download this report from Dark Reading to find out how cybersecurity teams are they are dealing with malware-related challenges.

Enterprises are looking at eXtended Detection and Response technologies to improve their abilities to detect, and respond to, threats. While endpoint detection and response is not new to enterprise security, organizations have to improve network visibility, expand data collection and expand threat hunting capabilites if they want their XDR deployments to succeed. This issue of Tech Insights also includes: a market overview for XDR from Omdia, questions to ask before deploying XDR, and an XDR primer.

Selecting the right network security product for your organization can be a daunting decision. Dozens of security products all similarly promise to protect your environment without impeding network performance. How can you determine the best fit for your network? Where can you get nonbiased information on how these products will actually perform in your network?

The good news is that security product testing is evolving, with third party, open security testing organizations emerging to provide objective information on security products. In this special report, you will get insight on how product testing is evolving into a more open model, with more objective testing processes, parameters, and reports.

What's inside:

• From the Desk of the Executive Director of NetSecOPEN
• Impact of Neutral Agencies in Evolution of Security
• NetSecOPEN Ushers in New Era in Cybersecurity Testing
• Let's Get Real: Network Security and Performance Testing Needs to Be Open to Evolve
• Piecing Together the Performance Testing Puzzle
• NetSecOPEN Opens Up Security Test Standards
• The Value of Independent Product Testing in Cybersecurity

The information submitted is collected by both Informa Tech and our sponsors.

This report is sponsored by: NetSecOPEN • Keysight • SonicWall • Spirent• UNH-IOL • VIAVI Solutions

Many organizations revised their incident response (IR) processes over the last year in response to high-profile breaches resulting from vulnerabilities in mission-critical software. Concerns over the breaches prompted a greater focus on automated tools and processes for detecting and responding to security incidents more effectively. However, many still emphasize attack prevention and perimeter defense over detection and response. Download Dark Reading's report to learn more about where today's cybersecurity pros stand on IR tools and processes.

Shadow IT was difficult enough. The addition of Internet of Things to the enterprise network introduces even more issues because security teams can't inspect and manage the devices. Enterprise defenders need a sound IoT security strategy that addresses asset discovery and management, consistent security policies, and automation.

The report also looks at:

• How attackers are targeting IoT
• How BlackBerry is reinventing itself for IoT security
• How 5G LANs are changing IoT landscape

Threat detection and response systems, by definition, are reactive because they have to wait for damage to be done before finding the attack. With a prevention-mindset, security teams can proactively anticipate the attacker's next move, rather than reacting to specific threats or trying to detect the latest techniques in real-time.

The report covers areas enterprises should focus on:

• What positive response looks like.
• Improving security hygiene.
• Combining preventive actions with red team efforts.

Cloud computing — encompassing SaaS apps, modular development platforms, and on-demand IT infrastructure — is omnipresent in the enterprise. However, the road to digital transformation in a multicloud setting can be full of speed bumps.

The report covers areas enterprises should focus on for their multicloud/hybrid cloud security strategy:

• increase visibility over the environment
• learning cloud-specific skills
• relying on established security frameworks
• re-architecting the network