Following the Wh1t3 Rabbit - Practical Enterprise Security

Enterprise Security organizations often find themselves caught between the ever-changing needs of the agile business, and the ever-present, ever-evolving threats to that business. At the same time – all too often we security professionals get caught up in “shiny object syndrome” which leads us to spend poorly, allocate resources unwisely, and generally de-couple from the organization we’re chartered to defend. Knowing how to defend begins with knowing what you’ll be defending, why it is worth defending, and who you’ll be defending from… and therein lies the trick. This blog takes the issue of enterprise security head-on, challenging outdated thinking and bringing a pragmatic, business-aligned, beyond the tools perspective … so follow the Wh1t3 Rabbit and remember that tools alone don’t solve problems, strategic thinkers are the key.

Rafal (Principal, Strategic Security Services)

Logging: Opening Pandora's Box - Part 4 (Awareness)

In the final chapter of the Logging: Opening Pandora's Box series we'll talk our way through getting to a state where you're actively getting a new level of awareness from out logging capabilities.  Awareness is defined as the ability to knowunderstand and react to various types of events in near-real-time in order to defend your enterprise.  Whether you're defending it from performance failures, functionality failures, or security failures is dependent on the group you work in - but we'll tackle that another time.

Logging: Opening Pandora's Box - Part 3 (Paralysis)

Continuing on with the series on logging titled "Opening Pandora's Box" we move into the third stage of realization - paralysis.  Once you've gotten through the first two stages of anxiety and elation to this third stage - I think you find yourself a little overwhelmed.

Logging: Opening Pandora's Box - Part 2 (Elation)

In a previous post [Logging: Opening Pandora's Box - Part 1 (Anxiety) ], I started us thinking about the Pandora's Box that is your enterprise logging function.  In this post, we get past the anxiety that you were feeling and start feeling good about logging.  More than just feeling good about logging, we're starting to feel great about what logging can do for us, and how it can improve our enterprise security posture.

Logging: Opening Pandora's Box - Part 1 (Anxiety)

This post kicks off a series of posts titled "Opening Pandora's Box", that will cover the untapped wealth that is your corporate logs.  After talking about logging with some people in the customer space, and our engineering and research groups back here at HQ, it's clear to me that logging is more than just something that everyone should be doing ... it's like a Pandora's Box that many organizations are almost afraid to tap into.  I thought it would be a good idea to explore this more, so kicking off this series is phase 1 you'll probably go through when you start thinking about logging - anxiety.

Search
About the Author(s)
Follow Us
Twitter Stream


Community Announcements
HP Blog

Technical Support Services Blog

Labels
The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation