Virtual CISO – An appealing alternative to CISO

Virtual CISO – An Appealing Alternative to CISO The cybersecurity market is in a state of influx as it matures into a more mainstream information technology service. As the number of cyber-attacks from e-mail phishing to sophisticated data farming are exponentially growing, there are not enough cyber security experts to keep up with the demand….

Separation of Untrusted Network Traffic on AudioCodes SBCs

Separation of Untrusted Network Traffic on AudioCodes SBCs Introduction This is the third in a series of articles on hardening AudioCodes Session Border Controllers (SBCs). The series is mostly following the guidance provided by AudioCodes. These articles are listed at the end of this article.  AudioCodes recommends untrusted network traffic be both physically and logically separated…

The Journey to Zero Trust

The Journey to Zero Trust The Zero Trust concept has been around for a while now, and the rise of remote work related to COVID lockdowns supercharged the Zero Trust conversation.  Many organizations had to scramble to enable employees to work remotely but did not have technology environments that were prepared for it.  As a…

Improving Cloud Security Policies

Improving Cloud Security Policies Our Strategic Advisors find a consistent gap when reviewing our customers’ security policies: a lack of focus on cloud computing. Even in organizations with many traditional policy documents, there’s a lag in updating them for cloud technologies like Microsoft 365. Additionally, the gap widens when it comes to documenting the standard…

The Value of the Roadmap

The Value of the Roadmap Since making the transition to consulting from technology leadership roles, I am constantly surprised at how many organizations have not documented and agreed upon a technology roadmap, yet have spent enormous amounts of money and time purchasing licensing, hardware, and applications. This usually leads to an environment with overlapping products,…

AudioCodes SBC Configuration Update for Teams Direct Routing

UPDATE! AudioCodes SBC Configuration Update for Teams Direct Routing Introductions On October 26, 2022, AudioCodes published 0483 Product Notice – SBC Security Configuration update for Microsoft Teams Direct Routing. The article provides configuration information to mitigate a recently discovered vulnerability in the Session Border Controller (SBC) configuration for Teams Direct Routing that had been previously…

5 Ways to Help Remote Workers Be More Effective

5 Ways to Help Remote Workers Be More Effective As we continue to dissect the trends in remote work, we reflect on how to optimize this new work/life style for our users. Prior to the pandemic, less than 20% of U.S. employees reported working from home 5 days or more per week. Fast forward to…

Compliance as Security Technology

Compliance as Security Technology One of my favorite security analogies is that enterprise information security is like an onion. Each layer of the onion represents a different control that secures the data at the center. Common layers are endpoint protection, mobile device management, MFA, firewalls, encryption, security policies, and staff training. All of these (and…

New Microsoft Defender Security Tools: MDEASM and MDTI

New Microsoft Defender Security Tools: MDEASM and MDTI Cybersecurity is ever-changing. New attacks and techniques are practically created every day. Organizations are getting more complex with multi-cloud environments. Data is exponentially growing and we are losing visibility into our assets due to poor governance. Last week, Microsoft announced two new Defender solutions as a result…

How to Fearlessly Implement Your Zero Trust Strategy

How to Fearlessly Implement Your Zero Trust Strategy “Zero What?” So what does Zero Trust mean? Zero Trust has been a term that has been around a long time. Remember the X Files? Agent Molder would always tell his colleagues – “Trust no one”. That pretty much sums it up. You don’t trust anyone who…