Resources

Tripwire Enterprise: Reimagining a Winning Product
Blog

Tripwire Enterprise: Reimagining a Winning Product

By Jeff Moline on Thu, 07/27/2023
How many security products does it take to monitor an organization? Even a small company often finds itself working with multiple monitoring tools to gain visibility into its security posture. This creates multiple blind spots, as a security analyst needs to jump between different tools with different formats and configurations to research a security...
Cybersecurity
File Integrity & Change Monitoring
Security Configuration Management
Enhanced Data Analysis with Synthetic Datasets
Blog

Enhanced Data Analysis with Synthetic Datasets

By Isla Sibanda on Wed, 07/26/2023
Large data can offer a massive affordable advantage for companies. Scientists, information analysts, marketing professionals, and advertisers rely upon receiving valuable insights from substantial pools of consumer information. When examined correctly, this information can provide valuable insight for organizations that understand how to use it. The...
Vulnerability & Risk Management
Cybersecurity
Security Configuration Management
Using-MFT-to-Solve-Your-Cloud-Data-Challenges-5-Key-Takeaways-bw
Blog

Using MFT to Solve Your Cloud Data Challenges: 5 Key Takeaways

By Tripwire Guest Authors on Wed, 07/19/2023
As business operations evolve, the challenge of securely moving data within the cloud is one of elevated concern. Transferring sensitive information to it is another. Many are caught between what worked in on-prem technologies and what is needed in cloud-based architectures. Others have sidestepped the security challenges by implementing a Managed File...
Cybersecurity
File Integrity & Change Monitoring
Guide

How Managed Services Can Help With Cybersecurity Compliance

Organizations are often overburdened with managing complex tools to handle their most important compliance responsibilities, and in many cases lack the internal headcount to manage those tools with highly-trained expertise. Managed services can solve your security staffing and resource challenges by arming your team with security expertise to maintain optimal compliance. Managed service providers...
Compliance
CIS Controls
FISMA
GDPR
HIPAA
NERC CIP
NIST
PCI DSS
SOX
A Sarbanes-Oxley Act (SOX) IT Compliance Primer
Blog

A Sarbanes-Oxley Act (SOX) IT Compliance Primer

By Anthony Israel-Davis on Mon, 06/26/2023
At the turn of the most recent century, the financial world was in a moment of unregulated growth, which lead to some serious corporate misdeeds in the United States. This presented the opportunity for two senators to enact a new law to ensure accurate and reliable financial reporting for public companies in the US. The result was the Sarbanes-Oxley Act...
Compliance
Security Configuration Management
Guide

File Integrity Monitoring (FIM) Toolkit

File integrity monitoring (FIM) is used to detect and correct unauthorized system changes that may be indicators of compromise. As the inventors of FIM, Fortra’s Tripwire has a multi-decade track record of helping organizations that want to reduce cyber risk and achieve system integrity to avoid security breaches and audit fines. This toolkit is a collection of helpful resources such as articles,...
File Integrity & Change Monitoring
Security Journeys: From Change Management to Compliance
Blog

Security Journeys: From Change Management to Compliance

By Chris Hudson on Wed, 05/17/2023
Zero Trust seems to no longer command the volume of articles that once set it up as a trend that promised a bright new future for security. This is in part because security is a journey. Rushed implementations and low returns often result in burnout with new technology, and generally the real work happens in the quiet stages when analysts and...
Vulnerability & Risk Management
File Integrity & Change Monitoring
Allowlisting and Blocklisting: What you need to know
Blog

Allowlisting and Blocklisting: What you need to know

By Tripwire Guest Authors on Tue, 05/02/2023
The phone rings, displaying "Potential Spam," warning of the possible downfall of accepting the call. We also have the option to set specific ringtones for the special people in our lives, so we audibly know immediately who’s calling. For other callers, like the once-a-year important call from our insurance or investment rep, we'll at least add their...
Cybersecurity
Security Configuration Management
Guide

Getting in Control of Financial Services Cybersecurity Regulations

Organizations in the financial sector are all too aware that their industry continues to be one of the top targets for cyber criminals. Among financial services and insurance organizations, the leading cause of breaches is system intrusion. That’s why so many cybersecurity compliance regulations have sprung up to ensure systems are kept hardened against attack. This guide will cover the main...
Compliance
GDPR
PCI DSS
SOX
What Is Microsegmentation and 5 Compelling Security Use Cases
Blog

What Is Microsegmentation and 5 Compelling Security Use Cases

By Tripwire Guest Authors on Mon, 04/17/2023
What Is Microsegmentation? Microsegmentation is a security technique that partitions a network into small, isolated sections to reduce the attack surface and reduce an organizations risk. Each microsegment is typically defined by specific security policies, accessible only to authorized users and devices. Microsegmentation is often seen as a more...
Cybersecurity
Security Configuration Management
Network Security Threats and Defenses: A 2023 Guide
Blog

Network Security Threats and Defenses: A 2023 Guide

By Tripwire Guest Authors on Mon, 01/30/2023
What Is Network Security? Network security is a broad field, encompassing various processes, policies, rules, standards, frameworks, software, and hardware solutions. Its primary goal is to protect a network and its data from various threats, including intrusions and breaches. A network security program typically utilizes a combination of access...
Cybersecurity
Security Configuration Management
The Heightened Importance of Cybersecurity in Mobile App Development
Blog

The Heightened Importance of Cybersecurity in Mobile App Development

By Tripwire Guest Authors on Thu, 01/12/2023
Mobile device use is pervasive, and has eclipsed traditional computing.  We often hear how various malicious mobile apps are released into circulation.  For these reasons, mobile app development needs to focus on cybersecurity just as much as it does on functionality and flexibility, if not more so. It’s an inevitable aspect of app development that must...
Cybersecurity
Security Configuration Management
Tripwire-Enterprise-9.0-What-you-need-to-know
Blog

Tripwire Enterprise 9.0: What you need to know

By David Bruce on Wed, 01/04/2023
Tripwire recently announced the release of Tripwire Enterprise (TE), version 9.0, Axon Agent 3.27, and TE Agent 9.0.0.  While the full list of features may be viewed on our web site, as a product manager, I wanted to take some time to introduce some of the changes in this new release. What’s new in Tripwire Enterprise 9.0? The first significant change...
Cybersecurity
File Integrity & Change Monitoring
How FIM Protects Assets in a Borderless World
Blog

How FIM Protects Assets in a Borderless World

By Tripwire Guest Authors on Mon, 12/19/2022
Recent advancements in the digital landscape have led to a new kind of paradigm, one where enterprise perimeters are no longer clearly defined or limited. The rapid uptake of remote working, cloud, and IoT led to these prominent shifts, resulting in users, applications, and data no longer residing exclusively within the perimeters of the enterprise....
Cybersecurity
File Integrity & Change Monitoring
How proper use of Identity and Access Management (IAM) can protect your organization from breaches
Blog

How proper use of Identity and Access Management (IAM) can protect your organization from breaches.

By Tripwire Guest Authors on Tue, 12/06/2022
In the world of security, authentication, and authorization methodologies are foundational aspects of defense. Authentication techniques protect against unlawful entry to systems through the verification of a user, and authorization either grants or denies the verified user’s access level. For example, if an employee from the finance department...
Cybersecurity
Security Configuration Management
How-to-Overcome-Access-Governance-Challenges-in-MultiCloud-Environments
Blog

How to Overcome Access Governance Challenges in Multi-Cloud Environments

By Tripwire Guest Authors on Mon, 12/05/2022
Identity governance, also known as access governance, is an integral part of any enterprise data protection and compliance framework. Seamless and timely access to required systems or resources can significantly increase employees’ productivity and performance. However, excessive privileges or unmonitored user access can often lead to internal and...
Vulnerability & Risk Management
Security Configuration Management
Highlights From the Tripwire Energy & NERC Compliance Working Group
Blog

Highlights From the Tripwire Energy & NERC Compliance Working Group

By Travis Emerson on Wed, 11/30/2022
Recently, Tripwire held its Energy and NERC Compliance Working Group virtual event. Tripwire has customers spanning the entire energy industry, including small, medium, and large city municipals, cooperatives, and investor-owned utilities and energy companies. The information shared in these sessions offered valuable insights for both very mature...
Security Configuration Management
Integrity Monitoring Use Cases: Compliance
Blog

Tripwire Enterprise Use Cases – Advanced Monitoring

By David Bruce on Tue, 11/29/2022
Many people remember where they were during historic events. Whether it is a personal, or a public occurrence, it’s just human nature to remember these significant moments.  Every profession also has its share of memorable events.  In medicine, those who were in the profession will remember where they were when they heard about the first heart...
Cybersecurity
File Integrity & Change Monitoring
Integrity Monitoring Use Cases: Compliance
Blog

Security Configuration Management Use Cases: Policy Monitoring for Security

By David Bruce on Wed, 11/23/2022
In the business world, compliance means making sure that companies of all sizes are meeting the standards set by regulatory or oversight groups in various laws and standards, such as HIPAA, PCI DSS, SOX, and GDPR. Sometimes, an organization will self-impose its compliance by adhering to guidance and frameworks from organizations such as NIST, ISACA, ISO...
Vulnerability & Risk Management
Compliance
Security Configuration Management
Integrity Monitoring Use Cases: Compliance
Blog

Integrity Monitoring Use Cases: Policy Monitoring for Compliance

By David Bruce on Fri, 11/11/2022
In response to increasing societal concerns about the way businesses store, process, and protect the sensitive data they collect from their customers, governments and standardization organizations have enacted a patchwork of regulations and laws. Some of these are generic regulations (CCPA, GDPR), while others are industry specific (SOX, NERC, HIPAA,...
Cybersecurity
Compliance
Security Configuration Management