The Cloud Security Alliance (CSA) recently held its Cloud Threats and Vulnerabilities Summit, featuring prominent speakers across 20 sessions and panels. Speakers highlighted the main systemic risks within the cloud ecosystem and provided recommendations on how to best defend against malicious actors. DayBlink Consulting’s Cybersecurity Group gathered the following key takeaways and their implications for […]
Read MoreOn October 14th, the DayBlink Consulting team came together for the 2nd annual Harbor Day, our firm-wide day of volunteering. This year, our firm volunteered, learned, and reflected on the impact that several organizations have in their communities across the country. DayBlink Consulting thanks the following organizations for the opportunity to support their critical missions: […]
In 2021, DayBlink Consulting employees were more involved in their communities than ever before. This past year, the team donated $29,000 to over 35 of our favorite charities in addition to providing pro bono consulting services and direct volunteering. We are excited to continue donating and volunteering with these organizations and more in 2022, using […]
Given the vast amount of data the United States maintains, the federal government has a unique responsibility to secure its own IT infrastructure to minimize the potential harm from a cyber intrusion. With persistent and inventive threats from bad actors in mind, the Biden Administration announced it is moving toward a Federal Zero Trust Architecture […]
In Q4 2021, the Department of Health and Human Services (HHS) published a briefing that detailed the concept of Zero Day attacks and their recent impact on the Healthcare and Public Health sector (HPH). As one of the 16 critical infrastructure sectors designated by Presidential Policy Directive 21, implementing advanced detection and protection tactics to […]
Most sophisticated cybersecurity organizations have embraced technical controls as a management mechanism. Some organizations have even begun mandating their adoption. Forced technical controls, if integrated appropriately into the culture, can dramatically increase cyber defense capabilities as well as combat employees’ inherent resistance to change. While proactively initiating change may seem counterintuitive to creating a strong […]
This October, the National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) published the first of a four-part series of position papers called “Security Guidance for 5G Cloud Infrastructure.” The first part, “Prevent and Detect Lateral Movement,” outlines five actions to prevent threats while building and hardening 5G cloud infrastructure. Although this position paper is specifically […]
For the first time in nearly two decades, it is a job seeker’s market, and organizations are scrambling to reassess compensation packages and working arrangements to accommodate shifting employee priorities, win in the battle for talent, and avoid the “Great Resignation.” Fewer companies, however, have focused efforts on the longer-term strategies that are critical to […]
Zero Trust as a concept has become almost fashionable, if not perceived to be routine, with the consequence of setting an unrealistic expectation that it is a table-stakes capability for any organization serious about cybersecurity. In part this is driven by the natural erosion of the security perimeter as more users work from anywhere and […]
Over a year after the murder of George Floyd and the rapid rise of the Black Lives Matter movement, we reflect on how large corporations have – or have not – adapted to changing expectations. Within the bounds of the legal system, George Floyd’s murder was acknowledged with his murderer’s conviction and the erection of […]