Harrison Lewis’ Post

🤔 Exploring PAM Deployment Options and Choosing Between SaaS and On-Premise Solutions 🛡️ Privileged Access Management (PAM) stands at the forefront of modern cybersecurity strategies, safeguarding critical systems and data from unauthorized access. As organizations strive to fortify their defenses against evolving cyber threats, the choice of PAM deployment becomes increasingly crucial. In today's dynamic landscape, where flexibility, scalability, and security are paramount, understanding the various deployment options is essential for making informed decisions. 👉 In this comprehensive blog post, we embark on a journey through the realm of PAM deployment, unraveling the intricacies of on-premise and Software as a Service (SaaS) solutions. We'll delve into the distinctive characteristics, benefits, and potential challenges associated with each deployment model, empowering you to navigate the PAM landscape with confidence. 🔗 https://lnkd.in/dg28xUtB #Kron #Cybersecurity #PAM #PrivilegedAccessManagement

The Annual SaaS Security Survey Report 2025 Plans and Priorities In 2024, Software-as-a-Service (SaaS) platforms are integral to most businesses. Unfortunately, inventive threat actors regularly breach SaaS applications from large organizations, underscoring the fragility of even the most secure systems. Against this backdrop of relentless SaaS threats, Adaptive Shield commissioned CSA to develop this survey and report. The goal of the report is to better understand the industry’s knowledge and opinions regarding SaaS application security. Conducted in January 2024, the survey examined: How organizations prioritize SaaS security  The tools used to secure SaaS applications  The successes organizations are experiencing in their SaaS security efforts  SaaS security risks that organizations still struggle to address The subsequent report serves as a timely exploration into how security measures are evolving in the era of SaaS. Key Findings: 70% of organizations have dedicated SaaS security teams  70% of organizations have moderate to full visibility into their SaaS applications 65% of organizations struggle with tracking and monitoring risks from third-party integrated apps and rectifying SaaS misconfigurations SaaS Security Posture Management (SSPM) users reported little difficulty with managing misconfigurations (56%), monitoring third-party applications (52%), and governing identity security (56%)

There’s a lot being written about this CrowdStrike situation - just sharing some of the best we’ve seen as it plays out. This one from Phil Fersht of HFS Research. #Buckler #cybersecurity #crowdstrike #microsoft #vendors #vrm #tprm #governance #riskmanagement #cyberprogram #cyberpolicies #incidentreaponseplan #businesscontinuityplan #cybergrc #regtech #ciso #cisos #vciso #cco #cro #operations #securityprofessionals

Insightful views from HFS Research & Phil Fersht - There is absolutely a failure in terms of DevSecOps and Quality Assurance (tied with CI/CD) at CrowdStrike.. And Microsoft as well as every Hyperscaler needs to think through a way to better integrate & ability to isolate (or contain) the impact through better integration testing/validation as well as early warning systems to contain these type of incidents (as mistakes/errors will happen)!! Too Big To Fail (or held accountable) - Its also surprising, over the years, how much we have struggled to hash out liability clauses in the contract as a Service Provider. Sleepless nights over negotiations and contracts that we had to walk away from because customers would lean towards unlimited liability. However, seems like some of these SaaS contracts have built in Safety Valve or Threshold that safeguards Larger SaaS providers more than the end consumer (or even customers like Delta). Imagine how much beef and escalation - an IT Data Center Operator or Deskside Engineer (or a vendor partner) would be getting for a bad patch or an outage of even of much smaller scale for customer facing apps (all the way to our CXOs & Legal Heads - along with severe penalties or cancellation of contract threatened). An error of this magnitude and their liabilities are limited to only the fees paid (max)! https://lnkd.in/gDiAaBeg

There are a lot of explanations on the Crowdstrike carnage, usually revolving around “kernel is complex” and s@(/t happens. While this is certainly true, the root cause as usual in such massive scale is an organizational one. Nowadays to talk about process, is a bit of a dirty word. Yet, there is nearly 45 years of an experience in those dusty old IT ops processes and the technology advancement is not really impacting the rationale behind them.

As the CrowdStrike outages illustrate, many IT departments are getting too complacent allowing their SaaS vendors to have full control of application management, updates, and automated delivery, especially when it comes to security updates. In addition, tech giants like Microsoft must be more diligent with their SaaS ecosystem partners. Joel M. #cybersecurity #crowdstrike HFS Research #saas #ecosystem #ITIL Read our thoughts...

#AzureDaily 🚀 Microsoft unifies security operations with #MicrosoftSentinel! Get ready for streamlined threat management, improved security insights, and cost-effective detection. Stay ahead of cyber threats in the cloud age! 💻🛡️ #Azure #CloudSecurity #ThreatDetection

This slipped under my radar late last year but the U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) released new baseline security configurations for M365 as part of their Secure Cloud Business Applications (SCuBA) project. CISA also released their new assessment tool, ScubaGear, to help organisations rapidly assess their M365 services against CISA’s recommended policies. This tool decreases the effort required for any organisation to assess their tenant configurations by producing a detailed as-is report to serve as a starting point. There’s also a similar approach for Google Workspace (GWS) and a tool called SCuBAGoggles 🤿 Need any help with getting started on your cloud security journey - please get in touch with me and the team at Spartans Security #cloudsecurity #cybersecurity #microsoft

8 Tips To Protect Your Organization in the Evolving SaaS Landscape https://lnkd.in/eEK74Atf [by Yoav Kalati] Today, we’re seeing the growing dependence on and adoption of Software as a Service (SaaS) tools by businesses and organizations. However, this increased reliance also has posed challenges on the security front, as threat actors try to take advantage of vulnerabilities inherent within SaaS usage – capitalizing on its seamless connectivity and convenience. Wing Security recently released an extensive analysis of 493 companies and found alarming trends regarding the usage of SaaS and its security. For example, Wing discovered that 97% of organizations are facing threats from compromised SaaS supply chain apps, shadow IT increased the risks […]

CISA has released the Secure Configuration Baselines for Microsoft 365, a result of the SCuBA project. These guidelines provide adaptable security recommendations for federal agencies’ email and cloud environments. Developed through extensive partnerships, these Baselines and tools are now available for download, marking a significant step in strengthening national cybersecurity. #CISA #Microsoft365 #cybersecurity https://lnkd.in/gPpWmmZv