Tom Madsen, Author at Cybersecurity Magazine

You are here:Home » Archives for Tom Madsen

Ethics of the 0-day trade

February 25, 2022February 25, 2022 Tom Madsen 0 Comments expert, expert. opinion, Opinion

This is an opinion piece, and an opinion that I am fully aware of, can be controversial in some sectors of the cybersecurity industry. Still, selling the state of the cybersecurity of customers, that most of us are doing our outmost to protect from the nefarious underbelly of the Internet, is actively undermining the security. And yes, I feel that it is actively undermining the security, to sell 0-days to brokers, on the darknet or companies on the Internet, instead of disclosing them to the vendors for patching.

General

Security Strategies Need to Consider the Strategies of the Business

January 14, 2022January 14, 2022 Tom Madsen 0 Comments

ybersecurity Magazine recently featured an article looking at how to develop a security strategy for a business. This article elaborates a little on the importance of keeping the business strategy in mind when developing a security strategy. This is something that can far too often be forgotten, or ignored, when implementing a security strategy.

General

Identity Is the New Black

October 22, 2021October 14, 2021 Tom Madsen 0 Comments expert. opinion

Identity is a concept that has existed since the dawn of the computer, but identity and its protection is becoming ever more important. Historically the identities we use have been stored and managed in on-premises environments. With cloud computing and the new normal of working from home, identity is now the only parameter that companies and organizations can use to exert control over systems and accesses.
The cloud has made the security of identities an on-going issue for the past 10 years, but increased working from home has made this issue a business critical one.

General

CSA – Cloud Security Framework

July 2, 2021July 2, 2021 Tom Madsen 0 Comments expert. opinion, Opinion

A few weeks ago, an article on the new CIS 18 framework was published on this site. CIS is one of the go to frameworks for security assessments, but the cloud has its own set of controls and a framework developed by the Cloud Security Alliance (CSA). They have recently released a new version of their framework as well. This article will introduce the CSA and its security framework.

General

18 is the New 20

June 7, 2021June 7, 2021 Tom Madsen 0 Comments

In May 2021, CIS launched a new version of their controls, version 8.
The CIS controls are a set of actionable controls recommended to help organisations defend against cyber attacks. Tom Madsen takes a look at the differences between this version and the previous, and how the controls better align to current world cyber threats.

General

Limiting Data Collection = Limiting Risk

May 24, 2021May 24, 2021 Tom Madsen 0 Comments expert, expert. opinion, Opinion

Ransomware attacks can have major impacts for both companies and their customers if successful, and the rate of attack is only increasing. Tom Madsen argues the need to limit the amount of data that is collected and stored long term to help to minimize the risks of a successful ransomware attack.

General

Hybrid & Multi Cloud Security – Greater Control of the Risks

April 19, 2021April 19, 2021 Tom Madsen 1 Comment expert. opinion, Opinion

The second article is now available of our two-part series looking at the security challenges faced by when using hybrid and multi cloud implementations

Tom Madsen now examines how some of the risks can be mitigated and how to reduce the complexity of typical hybrid and multi cloud implementations.

General

Hybrid and Multi Cloud Security

April 16, 2021April 16, 2021 Tom Madsen 1 Comment expert. opinion, Opinion

The latest article from Cybersecurity Magazine is the first in a two-part series looking at the challenges faced by cybersecurity professionals when clients are using multiple clouds as well as local infrastructure to run their business.
In this first article, Tom Madsen focusses on the various challenges in this environment.