In celebration of Halloween I wanted to bring you some real-life horror stories from the IT world. You can listen in below as Nimrod "Nimmy" Reichenberg, VP of marketing and business development at Algosec, and Matthew Pascucci, a security researcher and writer who blogs at www.frontlinesentinel.com, share with us some of the more celebrated and interesting horror stories they have seen in IT recently.
Don't worry, the names have been changed in the stories to protect the not so innocent. Have a listen and remember that any day could be a horror in IT if you don't follow best practices and be mindful of the goblins and ghosts that can haunt a computer network. Most of these horror stories revolve around a series of missteps which add up to big problems for the unlucky organizations. All of them could have been easily avoided.
While I am at it, I should also mention that Algosec just released a new application called BusinessFlow. From their website:
BusinessFlow aligns application owners and network security teams by enabling application-centric security policy management. BusinessFlow allows application owners to request connectivity in application terms, and automatically computes any required changes to firewalls and routers, triggering the relevant change requests. BusinessFlow also enables network teams to understand the impact of any network changes on application availability. Security policy management for business applications can now be centralized and automated throughout their entire lifecycle, from deployment to ongoing maintenance and decommissioning.
I mentioned to Nimmy that this does sound similar to a recent annoucement from one of Algosec's competitors, Tufin Technologies. Nimmy points out that is because customers are asking for this type of solution and both companies set to work to solve the problem. I guess time will tell which has the better solution. But if history is any judge, both of these companies have carved out places in the market for themselves. So probably both will gather customers.
Both Tufin and Algosec compete with Firemon, Red Seal Networks and Skybox Technologies in the firewall, change and risk management space.
In any event, enjoy the discussion and Happy Halloween!
As co-founder and Managing Partner at The CISO Group, Alan Shimel is responsible for driving the vision and mission of the company. The CISO Group offers security consulting and PCI compliance management for the payment card industry. Prior to The CISO Group, Alan was the Chief Strategy Officer at StillSecure. Shimel was the public persona of StillSecure as it grew from start up to helping defend some of the largest and most sensitive networks in the world.
Shimel is an often-cited personality in the technology community and is a sought-after speaker at industry and government conferences and events. His commentary about the state of security, open source and life is followed closely by many industry insiders via his blog and podcast, "Ashimmy, After All These Years" (www.ashimmy.com). Alan is now also a regular contributor to The CISO Group’s security.exe blog and podcast. Follow him on Google.
Alan has helped build several successful technology companies by combining a strong business background with a deep knowledge of technology. His legal background, long experience in the field, and New York street smarts combine to form a unique personality.
Disclosure: The CISO Group sells a software-as-a-service PCI compliance application called SAQPro. The company is independent and does not represent any other vendor's products as a reseller.
Policy on comments: Respectful discussion is welcomed! However comments that use inappropriate language, consist of name calling or personal attacks, or include accusations of wrongdoing are not appropriate. Those comments will be deleted or edited.