DevSecOps, the integration of security practices into the DevOps process, has become paramount in modern software development. While adopting DevSecOps can enhance efficiency and security, it’s crucial to navigate this journey with strategic foresight, care and meticulous execution. This article outlines the top five dos and don’ts to help organizations effectively navigate their DevSecOps journey. […]
In the landscape of modern technological innovation, the integration of artificial intelligence (AI) emerges as a defining force, reshaping industries, redefining possibilities, and propelling organizations into a new era of digital transformation. From streamlining operations to unlocking unprecedented insights, the potential of AI is vast and multifaceted. Yet, amid the promise of progress, the rapid […]
In today’s rapidly evolving cyber landscape, the traditional, reactive approach to security just doesn’t cut it anymore. For cyber professionals seeking to shift paradigms, proactive threat hunting represents a pivotal strategy. But what is threat hunting, and how can you start weaving it into your cybersecurity strategy effectively? This piece aims to demystify threat hunting […]
What is DORA? DORA stands for the Digital Operational Resilience Act. It is the framework introduced by the European Commission to manage ICT risks and incident management, along with the management of risks related to third-party service providers. The legislation was introduced in September 2020 and formally adopted in 2022. Purpose of DORA? Before the […]
What is the EU AI Act The European Union introduced the Artificial Intelligence Act (AI Act), a regulatory proposal concerning artificial intelligence within the EU. Presented by the European Commission on April 21, 2021, this legislation is the inaugural comprehensive AI law globally. The proposed EU Artificial Intelligence Act seeks to categorize and oversee artificial […]
On November 30, 2022, I attended the DSCI conference in the bustling city of Mumbai, India. The conference was held to gather input from leading industry representatives on the recently released Digital Personal Data Protection Bill 2022 [DPDPB 2022]. The group consisted of several individuals from different industrial sectors like Fintech, Cybersecurity Consulting, Auditing, Marketing […]
In Part 1 of this series, I wrote about how a beginner might want to approach the field of cybersecurity, and the knowledge and skills they should seek to acquire. In this article, I want to address the folks that have been working now for a couple of years and are seeking to get to the next […]
According to a study by Argon Security, software supply chain attacks grew by more than 300% in 2021 compared to 2020. The study also indicated that attackers focus most heavily on open-source vulnerabilities, code integrity issues, and the tools’ exploitation to disrupt any supply chain. What are supply chain attacks? A supply chain attack aims to infiltrate […]
Did you know that Jingle Bells was the first song played in outer space by the crew of NASA’s Gemini 6A space flight in 1965? Picture, if you will, a group of astronauts jamming out to the jolly jingle while floating through the stars in their miniature version of a one-horse open sleigh. But more than music, […]
Healthcare Cybersecurity Introduction Did you know? It is established that 1 out of every 4 medical devices is now connected. If we are to go to the hospital today, you would encounter at least 10 medical devices during your visit. Because of this increased connectedness of medical devices, hackers are starting to target medical devices […]
