In Depth

In Depth

Network security management

• Automating IT security

  IT security’s battle with the hacking community has always been a game of cat and mouse, but it’s becoming increasingly automated  Continue Reading

• APT groups’ mobile momentum finally faces resistance

  State-backed APT groups are increasingly targeting mobile devices as Covid-19 puts the spotlight on remote working infrastructure security. We explore how the industry is fighting back  Continue Reading

• How to apply zero-trust models to container security

  Containers have become a common fixture in software development, but they have resulted in new concerns for security teams. Is zero-trust the answer to tackling them?  Continue Reading

• Coronavirus: How to go back to the office safely and securely

  Security teams should be used to supporting remote workers effectively by now, but what’s going to happen when people start returning to their offices? We look at the risks and how to address them.  Continue Reading

• What are the security priorities for the post-coronavirus world?

  The Covid-19 pandemic is forcing massive change across the business world and things may never go back to normal. What does security look like in this new world, and what will buyers be prioritising?  Continue Reading

• Contact tracing: The privacy vs protection debate

  The Covid-19 pandemic has necessitated extreme measures not seen in peacetime for over 100 years. Contact-tracing apps are being developed as a tool for managing the pandemic, but are they a step too far?  Continue Reading

• A carrot-and-stick approach to fixing cyber security complacency

  With a majority of IT decision-makers holding the opinion that their employers are complacent when it comes to data protection, we look at what needs to be fixed, and how to fix it  Continue Reading

• The AWS bucket list: Keep your cloud secure

  Misconfigured cloud installations risk billions of records being exposed, damaging organisations’ finances and reputations. Paying attention to securing AWS storage buckets is a simple matter  Continue Reading

• Coronavirus: How to implement safe and secure remote working

  Find out what CIOs and CISOs need to know to enable their end-users to work remotely and stay secure during the Covid-19 coronavirus crisis, and learn how users can help themselves  Continue Reading

• Coronavirus: Can the networks take the strain?

  It was predicted that the mass roll-out of computer networks would mean at some point that there was no difference between work and home as a working location. These assumptions are about to be tested to the full  Continue Reading

• Trusty methods to keep out intruders

  Today’s hyper-connected world means trust can no longer be taken for granted to keep networks secure – enter the zero-trust model  Continue Reading

• Zero trust: Taking back control of IT security

  Trust on the network is a crucial factor in security risk, and zero trust changes the traditional model of ‘trust but verify’  Continue Reading

• Inside the SOC: the nerve centre of security operations

  Security operations centres are the bedrock of any cyber defence strategy, but operating one is increasingly challenging, with mounting workloads and a shortage of skilled personnel  Continue Reading

• Human factors are critical to securing digital transformation

  Sourcing the latest cyber security technology to support digital transformation projects is all well and good, but it’s meaningless if you fail to address your organisational culture and the people within it  Continue Reading

• Taking responsibility for security in the cloud

  From accidental leaks to full-on data breaches, maintaining security across cloud services is becoming a headache for enterprises. What questions should organisations be asking of their cloud service provider and, ultimately, whose responsibility is...  Continue Reading

• Data management strategies are evolving – so must enterprises

  A growing number of data-driven initiatives, alongside heightened demand for security in governance, data management and compliance, has led to the rise of a more holistic approach – integrated risk management  Continue Reading

• Developing innovative security analytics approaches in the digital age

  With security threats growing in scale and complexity, security analytics provide a way for IT teams to stay one step ahead of cyber attackers. The challenge is to ensure this technology continues to be effective in the face of new security ...  Continue Reading

• APAC IoT adoption improves amid challenges

  More enterprises across the region are using the internet of things to track fleet vehicles and improve operations, but technology integration and security concerns are still holding back widespread adoption  Continue Reading

• Securing your mobile estate – best practice for CIOs

  The prevalence of mobile devices in every part of daily life is shaping how enterprises make choices about software and network infrastructure, but how do businesses go about securing these vast new endpoint estates?  Continue Reading

• How to get the basics of mobile device management right the first time

  When adopting mobile device management, there are often fears around implementation and whether or not the strategy is even required  Continue Reading

• Vulnerability assessment done. Now what?

  Vulnerability assessment establishes the current state of an organisation’s cyber security, but to meet industry best practices, companies should go beyond that to achieve continuous improvement  Continue Reading

• What are the CDN options for enterprises?

  We look at how content delivery networks can give your organisation’s web presence a literal edge  Continue Reading

• A guide to choosing cloud-based security services

  Cloud-based security services can help organisations with a growing cloud footprint to reduce cost and address the manpower crunch in cyber security  Continue Reading

• Break free from traditional network security

  Highly connected businesses put pressure on traditional network security. We look at how corporate networks are breaking out of their boundaries  Continue Reading

• Security without borders

  Perimeterless security offers a way to secure each point of connectivity and every device, rather than relying on perimeter protection  Continue Reading

• What does the 802.11ax wireless standard mean for your network?

  The publication of the 802.11ax standard will pave the way for the next generation of wireless technology, but what does it mean for enterprise networks?  Continue Reading

• The future of network-connected device security

  The proliferation of poorly secured network-connected devices has prompted the UK government to publish new best practice guidelines. Do these go far enough?  Continue Reading

• Securing the SD-WAN: The next network challenge

  Every time an enterprise weighs up whether or not to try SD-WAN, security is an essential part of the picture  Continue Reading

• It’s complicated: How enterprises are approaching IAM challenges

  Identity and access management challenges are evolving with digital transformation. Computer Weekly explores some of the ways organisations are ensuring the right people gain the right access to the right resources  Continue Reading

• An insider’s look into the dark web

  A principal research scientist at Sophos offers a glimpse into the abysses of the dark web in a bid to uncover what cyber crooks are up to  Continue Reading

• How Australia is keeping pace with ICS threats

  Besides bridging the security gap between IT and operational technology teams, Australia is driving efforts to bolster the security of IoT devices  Continue Reading

• Cyber resilience key to securing industrial control systems

  Operators of industrial control systems can build greater cyber resilience by getting IT and operational technology teams to work more closely together and improving the visibility of their infrastructure, among other security measures  Continue Reading

• Network security in the digital transformation era

  Network security has always been a core focus for CISOs and IT security managers, but in an era of digital transformation, we examine if network security strategies are keeping up with new and emerging cyber threats  Continue Reading

• Network security in the age of the internet of things

  Wireless devices and smart technologies are increasingly being brought into the workplace, and pose a growing risk to company data  Continue Reading

• Businesses need to take cryptojacking seriously

  Organisations must pay attention to cyber criminals hijacking computing resources to mine cryptocurrencies, because nearly half are affected and the impact is greater than many realise  Continue Reading

• Navigating ASEAN’s patchy cyber security landscape

  Cyber resilience remains low across Southeast Asia, a regional economic powerhouse that is increasingly susceptible to cyber threats as its digital economy grows  Continue Reading

• How secure are smart energy grids?

  The improved efficiency of smart grids need to be weighed against the cost of security - presenting a unique opportunity for the tech sector and a new market for security companies  Continue Reading

• UK sale of surveillance equipment to Macedonia raises questions over export licence policy

  The UK approved an export licence for the sale of surveillance equipment to Macedonia – while the country was engaged in an illegal surveillance programme against its citizens. A senior minister was consulted on the decision  Continue Reading

• Where the device hits the network – a mobile device management update

  As business becomes increasingly mobile, we look at the latest trends in mobile device management to give businesses the edge  Continue Reading

• Firms look to security analytics to keep pace with cyber threats

  Traditional approaches to cyber security no longer enable organisations to keep up with cyber threats, but security analytics is an increasingly popular addition to the cyber arsenal  Continue Reading

• Staying ahead in the cyber arms race

  Darktrace’s Asia-Pacific managing director, Sanjay Aurora, offers insights on what organisations can do to reverse the odds against them in combatting cyber threats  Continue Reading

• What it takes for the internet of things to take off in ASEAN

  Besides lowering adoption costs, an ecosystem of governments, technology suppliers and telcos is necessary for the internet of things to flourish in Southeast Asia  Continue Reading

• Cloud, AI and security driving network monitoring industry

  We explore the latest developments and trends in enterprise network monitoring and management  Continue Reading

• Q&A: Navigating the APAC cyber threat landscape

  LogRhythm CEO Andy Grolnick calls for more investments in cyber security technology and processes in APAC amid growing cyber threats in the region  Continue Reading

• Enterprise wireless: trends and developments in 2017

  What will be the main developments in wireless this year and what challenges will this bring to enterprises?  Continue Reading

• Secure IoT before it kills us

  Experts say more must be done to mitigate the potentially catastrophic threats presented by connected devices  Continue Reading

• A Good American: Surveillance, 9/11 and the NSA

  Computer Weekly sat down to watch Friedrich Moser's documentary about the NSA whistleblower Bill Binney - A Good American  Continue Reading

• Cutting the cable: why industry is turning to wireless

  Wireless networking technology is heading out of the office and the living room, and on to the factory floor. We explore the trend  Continue Reading

• Lauri Love: the student accused of hacking the US

  How did a brilliant but fragile computer science student from a rural English town end up facing life imprisonment in the US? Computer Weekly speaks to Lauri Love  Continue Reading

• Digital transformation gives CIOs chance to be agents of change

  Whether it’s the IoT, cloud, mobility, big data or analytics, there is always something new to grapple with. Attendees found out how to keep up at Cisco Live in Las Vegas  Continue Reading

• My first IoT project: A guide for businesses

  We’ve all had a good giggle about having our fridges hacked – but now it’s time to get real. What are the first steps enterprises should take when implementing their first internet of things project?  Continue Reading

• Why are telcos so readily adopting open standards for NFV?

  Communications services providers are lining up to make their future virtualised networks as open as possible. What’s the attraction?  Continue Reading

• Three steps towards a hierarchy of needs for smart cities

  Smart cities face challenges around network connectivity, standardisation and data governance, say IoT experts, and these needs must be met for them to flourish  Continue Reading

• What the EU’s cyber security bill means for UK industry

  Coming European legislation on network and information security could have cost and organisational implications for a range of UK companies  Continue Reading

• Interview: James Bamford on surveillance, Snowden and technology companies

  Investigative journalist and documentary maker James Bamford was among the first to uncover the secrets of the US National Security Agency and its global surveillance  Continue Reading

• The true cost of a cyber security breach in Australia

  The costs of cyber security breaches can quickly add up with fines, reputational damage and overhauls to network security all hitting the coffers. The case of one Australian firm shows why paying a ransom to a hacker might be tempting.  Continue Reading

• CW500: Are you human or are you machine?

  As more things become internet-connected, systems designed to authenticate people now need to deal with machine-to-machine authentication  Continue Reading

• The security dangers of home networks

  Most companies take reasonable steps to protect their networks from virus attacks, but one area of vulnerability that is often overlooked is infection from employees’ home networks  Continue Reading

• How to ensure strong passwords and better authentication

  Five steps to ensure stronger passwords and better authentication to reduce the threat of business data theft  Continue Reading

• How to fully test IT networks for vulnerabilities

  Making sure a company network is secure is a very important task, and one that should be scheduled regularly  Continue Reading

• Mobile strategies increase need for data loss prevention technology in Europe

  Data loss prevention technology that covers all popular mobile platforms and is easy to use and implement is called for as mobile strategies evolve  Continue Reading

• Mobile security -- what works and what doesn't?

  Experts told the CW500 Security Club how mobility brings new challenges to security departments and an opportunity to go beyond building walls around the enterprise  Continue Reading

• Asean organizations braced for cyber attack

  As an emerging economic power bloc, Asean is bracing itself for an influx of cyber crimes as hackers look for lucrative targets  Continue Reading

• Australian businesses under cyber attack

  What are the cyber security risks facing businesses in Australia and New Zealand and how are organisations addressing them?  Continue Reading

• Fibre networks help Amsterdam to modernise historic canal infrastructure

  Waternet is using dark fibre networks to create an integrated smart canal and road system in the city of Amsterdam  Continue Reading

• Combat IT complexity with operational intelligence

  A Quocirca report says that businesses cope better with IT complexity and intensive security when they integrate BI and analytics tools into operational processes  Continue Reading

• Journey to the West: Will Huawei make its services ambitions stick?

  As network hardware supplier Huawei enters the services game, we consider if the West is ready to buy IT services from China  Continue Reading

• Bill Binney, the ‘original’ NSA whistleblower, on Snowden, 9/11 and illegal surveillance

  Always a patriot: Computer Weekly talks to Bill Binney, the senior NSA official who blew the whistle before Edward Snowden  Continue Reading

• How to secure the SDN infrastructure

  As more enterprises look to deploy software-defined networking, the need for security from the ground up should not be underestimated  Continue Reading

• Companies must act quickly to tackle cyber crime

  With cyber attacks becoming more sophisticated and widespread, companies must take stronger measures to prevent and tackle them  Continue Reading

• Companies must act quickly to combat cyber crime

  With cyber attacks becoming more sophisticated and widespread, companies must take stronger measures to prevent and tackle them  Continue Reading

• CW 500 Security Club: Securing the end point: a key challenge for business

  With multitudes of devices connecting businesses and their customers to interlinking systems, securing the end point has never been more vital  Continue Reading

• CW500: IT infrastructure for data protection

  The infrastructure to protect data is a thorny issue especially in an age where data is being proliferated throughout an organisation.  Continue Reading

• Businesses are beginning to adopt context-based security

  It is more than 10 years since context-aware security was proposed. We look at how the technology has evolved.  Continue Reading

• Protect your business by encrypting the network

  Enabling encryption across different points of the network can provide significant protection from the most advanced of attackers  Continue Reading

• IT security analytics: the before, during and after

  Effective IT security calls for intelligence ahead of, during and following an attack.  Continue Reading

• Hacktivism: good or evil?

  IT lawyer Dai Davis looks at the rise of hacktivism and its impact on business and international politics  Continue Reading

• Mobile VPNs: Battered but not broken

  With weaknesses exposed in mobile VPNs in recent months, we examine if they are safe for companies to deploy  Continue Reading

• No IPv6 explosion, but a ticking bomb

  IPv6 could be a ticking security time bomb in Belgium if businesses fail to respond to the fact that adoption is gaining momentum fast  Continue Reading

• SME cloud - blanket security or security blanket?

  Cloud network and security systems could be the answer for SMEs looking for enterprise-level services on a small-business budget  Continue Reading

• After Prism revelation there is nowhere to hide

  UK business should not ignore revelations about the US Prism internet surveillance programme.  Continue Reading

• CIO Interview: James Thomas, UCLH

  James Thomas, director of ICT at UCLH, talks about branching out into new mobile devices and embracing MDM and apps  Continue Reading

• Big data journalism exposes offshore tax dodgers

  How journalists harnessed big data to challenge offshore financial secrecy  Continue Reading

• All quiet on the Wi-Fi security front

  The last high-profile Wi-Fi data breach was the assault on the TJX retail group in 2007, but that doesn't mean there is no risk  Continue Reading

• The internet of things is set to change security priorities

  IT leaders must protect against the security risks introduced by the growing interaction between technology and the physical world.  Continue Reading

• How to tackle big data from a security point of view

  Before leaping into big data, companies must be clear what they are trying to achieve, otherwise their investment will be wasted  Continue Reading

• How to find the most vulnerable systems on your internal network

  Most corporate networks share common vulnerabilities, but many could be mitigated with education in “hacker thinking” for technical staff  Continue Reading

• Business priorities: what to protect, monitor and test

  How information security professionals can prioritise what to protect, monitor and test in the light of current budget and resource constraints  Continue Reading

• CW500 Security Club: Dealing with attacks inside networks

  Perimeter defences are no longer enough to keep data safe, experts told IT security leaders at the CW500 Security Club  Continue Reading

• Network security assessments: India Inc. is going beyond routine

  As network security assessments become essential hygiene, security experts at Indian enterprises are honing in to specifics. Some tips, insights and advice.  Continue Reading

• Virtualisation security for enterprise servers

  Don't fall prey to virtual server security myths. In this Security School lesson, expert Ben Chai explains how to implement server virtualisation securely.  Continue Reading

• 2010 Royal Holloway information security thesis series

  In this series of nine articles, recent MSc graduates from Royal Holloway University of London explain their information security research.  Continue Reading

• Challenges and solutions: Security of Vehicular Ad-Hoc Networks

  In the future, cars themselves may be able to prevent accidents by way of Vehicular Ad-Hoc Networks (VANETs). In this Royal Holloway University of London thesis, Abdul Kalam Aboobaker and Stephen Wolthusen explore security concerns.  Continue Reading

• Financial services sector faces continued information security challenges

  The financial services sector faces some sobering information security challenges. Find out what the state of security is in the financial services sector, as well as what banks are doing to combat information security threats.  Continue Reading

• How fuzz testing and tools can optimise testing processes

  Toby Clarke and Jason Crampton make a string argument for the use of fuzzing at all stages of testing.  Continue Reading

• Royal Holloway University of London MSc thesis Series

  This is a series of 12 thesis articles from MSc students at the Royal Holloway University of London, discussing security issues of the future.  Continue Reading