SOC 2 (Service Organization Control 2) is a set of security standards for service organizations that store, process, or transmit sensitive customer data. SOC 2 compliance involves demonstrating that your organization has adequate controls in place to protect this data and meet the criteria outlined in the SOC 2 standards. Here are the steps to… Continue reading 8 steps to become SOC 2 Compliant
Category: Blogs
Data Security Posture Management (DSPM)
What is DSPM? Gartner’s 2022 Hype Cycle for Data Security describes Data Security Posture Management (DSPM) thusly, “DSPM provides visibility as to where sensitive data is, who has access to that data, how it has been used and what the security posture of the data store or application is.” DSPM includes data classification to identify… Continue reading Data Security Posture Management (DSPM)
The Most Time Consuming Elements of SOC 2 Compliance
The most time-consuming step in the SOC 2 compliance process can vary depending on the size and complexity of an organization’s operations— in addition to its current security posture management. Here is a compiled list of steps that we believe are the most time-consuming. Assessing current security controls— which involves evaluating the current security policies,… Continue reading The Most Time Consuming Elements of SOC 2 Compliance
How Bad Actors Get Access to Your Cloud
“Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit in volup ariatur. Excepteur sint occaecat cupidxtate velit esse cillum dolore eu fugiat… Continue reading How Bad Actors Get Access to Your Cloud
5 Tips to Prevent a Data Breach and Protect Your Cloud Applications
We are in the midst of the biggest computing transformation ever, bigger than the once renowned shift from mainframe to client-server computing. Every day more data and more applications move to the cloud. However, too many organizations are operating their environments in the dark. It seems like there’s a new cloud data breach hitting the… Continue reading 5 Tips to Prevent a Data Breach and Protect Your Cloud Applications
Stop Cleaning Up After Yesterday’s IaaS Mess – use Self Healing Systems
Remember that panicked phone call? That cascade of urgent emails and Slack messages? What about those war rooms and the screaming urgency to create YAML files to be uploaded to a system that was already down? Yeah, that. I’d like to avoid that in the future if I could. Cloud attacks require a fast response… Continue reading Stop Cleaning Up After Yesterday’s IaaS Mess – use Self Healing Systems
Stop Playing IaaS Whack-a-Mole
Context matters when it comes to cloud security Those of us in DevOps and IT Security are drowning in lists reporting potential issues. Here it comes: my daily list of vulnerabilities found in my IaaS environment yesterday. And here’s my list of potentially risky configurations. I might also get an occasional compliance posture list to… Continue reading Stop Playing IaaS Whack-a-Mole
A Message From the Founders
Hello! We’d like to introduce ourselves. Our mission is to help keep cloud services always-on by dynamically protecting cloud, container, and data assets with agentless runtime security. We envision a world where you get full visibility, proactive security posture management, DLP, and responsive self-healing workload protection all the way down to the container level in… Continue reading A Message From the Founders