Resources

Blog

Know Thyself and Thy Network

By Chris Hudson on Wed, 01/10/2024

Image The shifting sands of IT make the adage "you never know it all" ever more true as time goes by. I recall days when it felt like you could click through every major directory of Yahoo and know a little something about everything. I was a young man with a voracious reading appetite and an active imagination – both of which were...

Blog

Non-repudiation: Your Virtual Shield in Cybersecurity

By Dilki Rathnayake on Tue, 01/09/2024

Image In the digital world, where countless users communicate, share data, and engage in diverse activities, determining the origin and actions behind these interactions can be quite challenging. This is where non-repudiation steps in. Coupling other security factors, such as delivery proof, identity verification, and a digital...

Blog

How Does PCI DSS 4.0 Affect Web Application Firewalls?

By Josh Davies on Mon, 01/08/2024

Image The payment industry is bracing for the transition to Payment Card Industry Data Security Standard (PCI DSS) 4.0, heralding significant changes in cybersecurity practices. As we approach the implementation of this revised standard, a critical focal point emerges: the role and new mandate of web application firewalls (WAFs) in...

Blog

Operational Resilience: What It Is and Why It's Important

By Nick Hogg on Wed, 12/13/2023

Image Frankly stated, operational resilience is your ability to climb the mountain, no matter the weather. Businesses now need more than a good security structure to weather the storms of AI-driven threats, APTs, cloud-based risks, and hyper-distributed environments. And more importantly, operational resilience in 2024 requires a...

Blog

NIST CSF 2.0: What you need to know

By Antonio Sanchez on Mon, 12/11/2023

Image Organizations looking to protect their sensitive data and assets against cyberattacks may lack the ability to build a cybersecurity strategy without any structured help. The National Institute of Standards and Technology (NIST) has a free, public framework to help any organization mature its IT security posture. Recently, the...

Blog

Change Variance: How Tiny Differences Can Impact Your IT World

By Chris Hudson on Mon, 11/20/2023

Image In the vast and ever-evolving universe of information technology, there's one constant: change (that and cliches about constants!). Servers, systems, and software – they all get updated and modified. But, have you ever stopped to consider how even tiny differences between these digital entities can sometimes lead to unexpected...

On-Demand Webinar

Best Practices for the PCI DSS 4.0 Countdown

Wed, 09/27/2023

The deadline for compliance with the Payment Card Industry Data Security Standard (PCI DSS) 4.0 requirements isn’t until March 31, 2024, but organizations that allow those remaining months to fly by without adequate preparation may face last-minute PCI panic. The best approach is to steadily reach key milestones so you’ll be fully prepared when the deadline arrives. Watch the...

Blog

Closing Integrity Gaps with NIST CSF

By Lane Thames on Wed, 09/27/2023

Image The then-new 2014 NIST Cybersecurity Framework (CSF) was designed to plug security gaps in operational technology. It’s still in use today and more relevant than ever. Fortra’s whitepaper provides a cohesive review of this security staple and how to glean the best out of it for your strategy. A Brief History of NIST CSF “The...

Blog

10 Mistakes in Cybersecurity and How to Avoid Them

By Katrina Thompson on Mon, 09/11/2023

Image It's easy to rest on our laurels. Prevent a few breaches – or go long enough without one – and you start to feel invincible. While our efforts are certainly laudable, we can't get too comfortable. As defenders, we always need to be on the hunt for what we've missed and ways to do better. Here are ten common cybersecurity...

Blog

Working with a Reliable Partner for Cybersecurity Success

By Joe Pettit on Thu, 08/31/2023

Image Technology companies are often seen as revolving doors of constantly shifting personnel. Whether they are seeking a better work environment or chasing a higher paycheck, these staff changes can hurt an organization’s progress. Worse yet, the customers are often negatively impacted by these changes in the continuity of...

Blog

The CIA Debate: Which is the Most Important?

By Anastasios Arampatzis on Mon, 08/21/2023

Image The Confidentiality, Integrity and Availability (CIA) Triad is a crucial information security model that guides and assesses how an organization manages data during storage, transmission, and processing. Each component of the triad plays a vital role in maintaining information security: Confidentiality means that data should...

On-Demand Webinar

Expert Compliance Automation Tips for Financial Services

Thu, 08/17/2023

Cybersecurity compliance standards like the Payment Card Industry Data Security Standard (PCI DSS) and Society for Worldwide Interbank Financial Telecommunications (SWIFT) do an excellent job of hardening systems against breaches. This is especially important in the financial services sector, a common target for cybercriminals. This on-demand webinar presented by Senior...

Compliance

CIS Controls

FISMA

GDPR

PCI DSS

SOX

Blog

Security Immutability: The Importance of Change

By Tyler Reguly on Mon, 08/14/2023

Image A few years ago, I wrote about the importance of security immutability. More specifically, I discussed how important it is that your environment be unchangeable in order to ensure that it remains secure. As I looked back on the article, I found it rather amusing that the article was published 4 years ago, but that feels like a...

Guide

5 Things Your FIM Solution Should Do for You

File integrity monitoring (FIM) is a critical security control that helps organizations detect system changes in real-time that indicate impacts to compliance and potential cybersecurity incidents, empowering teams to respond rapidly. FIM is required by many major compliance standards such as North American Electric Reliability Corporation Critical Infrastructure Protection ...

Blog

Tripwire Enterprise: Five ‘Other’ Things You Should Know

By Faisal Parkar on Thu, 08/10/2023

Image Network engineers and security analysts have a lot in common. Both require the ability to not only understand the problems at hand but to ascertain the moments leading to them. A typical scenario would include a request to help with a problem a customer has been experiencing. The person you are trying to assist is probably a...

Blog

Tripwire Enterprise: Reimagining a Winning Product

By Jeff Moline on Thu, 07/27/2023

Image How many security products does it take to monitor an organization? Even a small company often finds itself working with multiple monitoring tools to gain visibility into its security posture. This creates multiple blind spots, as a security analyst needs to jump between different tools with different formats and configurations...

Blog

Using MFT to Solve Your Cloud Data Challenges: 5 Key Takeaways

By Tripwire Guest Authors on Wed, 07/19/2023

Image As business operations evolve, the challenge of securely moving data within the cloud is one of elevated concern. Transferring sensitive information to it is another. Many are caught between what worked in on-prem technologies and what is needed in cloud-based architectures. Others have sidestepped the security challenges by...

Guide

How Managed Services Can Help With Cybersecurity Compliance

Organizations are often overburdened with managing complex tools to handle their most important compliance responsibilities, and in many cases lack the internal headcount to manage those tools with highly-trained expertise. Managed services can solve your security staffing and resource challenges by arming your team with security expertise to maintain optimal compliance. ...

Compliance

CIS Controls

FISMA

GDPR

HIPAA

NERC CIP

NIST

PCI DSS

SOX

On-Demand Webinar

ATT&CKing the Center for Internet Security

Thu, 06/01/2023

From the Critical Security Controls to the Community Defense Model, CIS has provided plenty of mappings that show how knowledge from MITRE ATT&CK can be integrated with their offerings. Last year, CIS went a step further, integrating mappings from MITRE ATT&CK into their Benchmarks. This provides a wealth of information to defenders, but too much information can sometimes lead...

Guide

File Integrity Monitoring (FIM) Toolkit

File integrity monitoring (FIM) is used to detect and correct unauthorized system changes that may be indicators of compromise. As the inventors of FIM, Fortra’s Tripwire has a multi-decade track record of helping organizations that want to reduce cyber risk and achieve system integrity to avoid security breaches and audit fines. This toolkit is a collection of helpful...

Know Thyself and Thy Network

Non-repudiation: Your Virtual Shield in Cybersecurity

How Does PCI DSS 4.0 Affect Web Application Firewalls?

Operational Resilience: What It Is and Why It's Important

NIST CSF 2.0: What you need to know

Change Variance: How Tiny Differences Can Impact Your IT World

Best Practices for the PCI DSS 4.0 Countdown

Closing Integrity Gaps with NIST CSF

10 Mistakes in Cybersecurity and How to Avoid Them

Working with a Reliable Partner for Cybersecurity Success

The CIA Debate: Which is the Most Important?

Expert Compliance Automation Tips for Financial Services

Security Immutability: The Importance of Change

5 Things Your FIM Solution Should Do for You

Tripwire Enterprise: Five ‘Other’ Things You Should Know

Tripwire Enterprise: Reimagining a Winning Product

Using MFT to Solve Your Cloud Data Challenges: 5 Key Takeaways

How Managed Services Can Help With Cybersecurity Compliance

ATT&CKing the Center for Internet Security

File Integrity Monitoring (FIM) Toolkit

Contact Information

Privacy Policy

Cookie Policy

Impressum