Over the past few days I have been wresting the answer to one question: “Is…

Continue reading

What is Zero Trust? Essentially, it is a model. A security model. Alternatively, you could call it an approach, framework, or architecture. Different people refer to it in different ways, but I prefer the term model, by reference to the “scientific model” as Zero Trust is first and foremost a conceptual representation of a system of ideas, events, or processes.

Continue reading

The National Cyber Security Centre (NCSC) has introduced its latest set of requirements for the…

Continue reading

How To Keep Your Passwords Safe In the Workplace If you save passwords on your…

Continue reading

I have been thinking of the easiest way to deal with the InstallerFileTakeOver payload that takes advantage…

Continue reading

Attack Surface Reduction (ASR): a very familiar scenario So, you’re deep into project planning and you…

Continue reading

Conditional Access is one of those great features in the Microsoft Security ecosystem that makes it…

Continue reading

Security vs functionality; an unnecessary battle that we see far too often. IT and ops teams that…

Continue reading

When it comes to evaluating security choices, analysis paralysis can be a real thing. Especially when…

Continue reading