AI brings speed to security
Survey results indicate incident response times improve with AI-based security services.
Security
Insights, tools, and best practices to keep your organization and users secure.
How network professionals deal with attacks and disruptions
A new survey highlights concerns from network and cloud administrators, and reveals their coping strategies.
Strengthen your digital defenses with AI and supervised machine learning
Use cases of AI and ML to help businesses build better defenses today and in the near future.
Stephen Gates on the growing risks posed by malicious bots
The O’Reilly Podcast: Protecting your organization against current and future threats.
Modernizing cybersecurity approaches
Utilizing machine intelligence to facilitate proactive cybersecurity operations.
How to tune your WAF installation to reduce false positives
Optimizing your NGINX setup with a tuned ModSecurity / Core Rule Set installation.
Choosing a tool to track and mitigate open source security vulnerabilities
How to find the best Software Composition Analysis (SCA) for your organization
Responding to new open source vulnerability disclosures
Best practices for quick remediation and response
Integrating continuous testing for improved open source security
Testing to prevent vulnerable open source libraries.
Mitigating known security risks in open source libraries
Fixing vulnerable open source packages.
Finding vulnerable open source packages
When and how to test your application for open source vulnerabilities.
What defines a known open source vulnerability?
Understanding known vulnerabilities in open source packages.
2017 O’Reilly Defender Awards
The O’Reilly Defender Awards celebrate those who have demonstrated exceptional leadership, creativity, and collaboration in the defensive security field.
Why cloud-native enterprise security matters
Matt Stine looks at three principles of cloud-native security and explains an approach that addresses the increasing volume and velocity of threats.
Harnessing the power of conversational interfaces in security
The case for chatbots in the modern security operations center.
Criminal cost modeling
Chris Baker on an economic model for deterring attacks.
Speak security and enter
Jessy Irwin on making security make sense for nontechnical users.
Recognizing and evaluating scientific claims in security
Five questions for Josiah Dykstra on techniques to expose and invalidate misleading claims.
Kelly Harrington on the current state of web malware.
Are we out of the woods?
Improving security through data analysis and visualizations
Five questions for Charles Givre on building effective security analytics programs.
Announcing the Rebecca Bace Pioneer Award for Defensive Security
Carrying on Becky Bace’s legacy of encouraging and celebrating defenders.
Operationalizing security risk
Bruce Potter on why and how to build a risk assessment program.
When you hear hooves, think horse, not zebra
Don't overcomplicate cybersecurity. Focus on building a strong security foundation and go from there.
Privacy and threat in practice
Exploring the disconnect between security wisdom and user realities.