Dan Blum

Did Capital One Respond Well to an “Erratic” Data Breach?

Published September 10, 2019 | By Dan Blum

On July 19, Capital One Financial Corporation determined it had sustained a data breach of over 106 million user records due to a cyberattack by a user named “Erratic” on Twitter. The company announced the breach to the media July… Continue reading →

Posted in Dan Blum | Tagged breach, Capital One, cyber-resilience, Erratic, incident response

Audit Active Directory to Reduce Risks from Privileged Users (webcast)

Published September 6, 2019 | By Dan Blum

Do you think that Active Directory privileged management practices may pose risks to your organization? If so, please register for my webcast on September 12!

Posted in Coming Events, Dan Blum | Tagged Active Directory, Active Directory audit, AD, audit

Rational Cybersecurity Q3 Update

Published August 26, 2019 | By Dan Blum

Since my Q2 update on the Rational Cybersecurity for the Business book project I’ve continued to forge ahead, completing another 3 draft chapters. My goal is to get to final draft (after rewrites) before year’s end!

Rational Cybersecurity for… Continue reading →

Posted in Dan Blum | Tagged rational cybersecurity

Building Practical IGA in the Cloud Era (Raleigh and Cleveland, September 18 and 19)

Published August 6, 2019 | By Dan Blum

Identity Governance and Administration (IGA) and Privileged Account Management (PAM) need a makeover for cloud computing. During a recent consulting engagement, I took a deep dive into Cloud IGA and Cloud PAM. I’ll be sharing my perspectives over the next… Continue reading →

Posted in Coming Events, Dan Blum | Tagged cloud computing, cloud security, IAM, identity management, IGA, PAM, privileged account management

The Rise of Identity, Access and Authentication in Security Webinar

Published July 26, 2019 | By Dan Blum

Why is identity perhaps the most critical security subject matter domain today? What do you think? Hint: Take a look at the consequences and causes of most breaches. Also, tune in to hear me cover the subject at 10:00… Continue reading →

Posted in Coming Events, Dan Blum | Tagged IAM, identity management, zero trust

Mastering Hybrid Active Directory Auditing Webinar: June 11

Published June 7, 2019 | By Dan Blum

Hybrid Active Directory Auditing seems like a topic no one is covering – until now! Please sign up with BeyondTrust for my June 11, 2019 | 1:00 PM – 2:00 PM ET webinar to learn more.

All too often… Continue reading →

Posted in Coming Events, Dan Blum | Tagged Active Directory, Active Directory audit, AD audit, Azure Active Directory, Azure AD, Azure AD audit, BeyondTrust, IAM, identity management

Could a Global Reputation System Restore Trust to Business and Governance?

Published May 29, 2019 | By Dan Blum

“A global reputation system will restore trust,” said RSA CEO Rohit Ghai during a keynote presentation I reviewed at RSA 2019. In the same way that whitelisting is more effective than blacklisting in the never-ending antivirus… Continue reading →

Posted in Dan Blum | Tagged blockchain, Connect.me, decentralized identity, digital reputation, IAM, identity management, reputation, reputation systems, RSAC, Sovrin, Sovrin Network

Rational Cybersecurity Q2 Update

Published May 20, 2019 | By Dan Blum

Since launching the Rational Cybersecurity for the Business book project to kick off the New Year, I’ve made great progress, completing more than 20 security leadership interviews, and drafts for 5 of the 10 chapters.

Rational Cybersecurity for the Business’s… Continue reading →

Posted in Dan Blum | Tagged governance, rational cybersecurity, risk management

Helping CISOs and Board Members Communicate on Risk: A Shared Assessments Summit 2019 Recap

Published April 19, 2019 | By Dan Blum

Returning from the Shared Assessment Summit 2019 last week, I was struck by one repeated message: CISOs and Board of Directors members are still struggling to assess and communicate risk. Early in the Summit Agenda, a CISO Panel discussion… Continue reading →

Posted in Uncategorized | Tagged CISO, cybersecurity, risk management

Active Directory Audit: Why and How

Published March 25, 2019 | By Dan Blum

Why is 1:00 PM EST March 26 important? That’s when I’ll be presenting an Active Directory Audit webinar. The figure below features some of the issues I’ll be covering that motivate audit. A brief description of the webinar follows.… Continue reading →

Posted in Coming Events, Dan Blum | Tagged Active Directory, audit, directory services

Dan Blum

Subscribe to Blog Notifications... HERE