Thursday, September 20, 2018

With input from George Finney and Michelle Malcher, Fuel User Group Board Members

Earlier this year at the Ignite Cybersecurity Conference in Anaheim, California, Fuel set up an interactive wall for attendees to mark areas where they are spending their time in their work, such as firewall configuration, and areas where they’d like to spend more time, such as private cloud management. The wall tells a great story—by peers, for peers—about where the industry stands. Here, we’ve broken down a few of the findings, with input from two Fuel User Group Board Members.

Friday, September 14, 2018

According to a prediction by Gartner, more than half of global enterprises already using the cloud today will adopt an all-in cloud security strategy by 2021. The technology has been around for a decade and in that time has allowed for more agile, scalable solutions and greater innovation from IT departments. However, companies are still experiencing growing pains as use of the cloud expands beyond the IT department. Common challenges include measuring compliance, gaining visibility across the IT infrastructure and open communication between security operations and IT groups. But it’s clear that the cloud is here to stay, and these challenges should be faced head-on.

Friday, September 7, 2018

A security stack is a collection of resources a company uses to protect itself from cybersecurity incidents. When incidents do occur, companies often believe the solution is to increase tools in their stack. However, this may not always be the best use of the stack. In many cases, more tools can mean more work for cybersecurity analysts who are already addressing thousands of possible threats every day. Companies can simplify their security stack by eliminating redundant tools or ones that rely too heavily on manual monitoring, to improve efficiency. It’s not about having every new tool or service in your security stack — it’s about how you use them.

Monday, August 20, 2018

By Gary Ramah, Fuel User Group Board Member

The Importance of DevSecOps

Over the past several years, there have been considerable changes to IT infrastructure. The addition of new technology, including cloud computing, dynamic provisioning and shared resources have increased the speed and agility of IT, while also affecting the cost. The result is that application development is now stronger than ever.

Because applications in the cloud are now larger and faster, the development and operations (DevOps) guidelines have to also become faster. This also means so-called “big bang” application launches are no longer prevalent, but thanks to integrated development, we now see faster releases and better stability in applications.

However, security still lags behind, which is why its incorporation from the start is paramount to the success of preventing hacks from occurring. This means the transformation of DevOps to DevSecOps.

Thursday, August 9, 2018

Use of the cloud is growing — but so are the problems that industries are facing to make it a safe tool. Gartner predicts that, by 2021, more than half of global enterprises already using the cloud today will adopt an all-in cloud security strategy. Given the tool’s rapid growth, companies are sometimes finding more challenges than solutions. Being ahead of the curve is the best way to ensure that cloud usefulness is maximized. Here are a few areas cybersecurity professionals should keep a close eye on to ensure they’re staying on top of common challenges.   

Thursday, August 2, 2018

By Paul Carter, Fuel User Group volunteer

Unit 42 is the global threat intelligence team at Palo Alto Networks and believe threat intelligence should be free, shared and available for all. s and industry experts. Unit 42’s podcast, titled Don’t Panic, is widely regarded as an engaging and entertaining way to keep up to date with the latest in cybersecurity. We asked Fuel User Group volunteer Paul Carter to listen to an episode on passwords and share his thoughts here. You can learn more about Unit 42 here and listen to the same episode as Paul did here.

Monday, July 23, 2018

By Charles Buege, a Fuel User Group member

Charles Buege is a Fuel User Group member who has a home lab setup unlike most others. Using a commercial internet provider and running multiple firewalls, his home lab gives him plenty of hands-on learning experience that can translate into his daily work environment. Here he shares how he set up the Palo Alto Networks PA-220 next-generation firewall. Be sure to read his other Fuel blog post, “My Journey to SSL Decryption.”

Thursday, July 12, 2018

What is DevOps?

The DevOps movement came to life from the desire to apply principles of Agile software development to IT operations. DevOps usually involves practices such as automated testing, proactive monitoring, and Agile development. Like most tools or techniques within the cybersecurity industry, it requires effective education and research on its use and effectiveness. DevOps can be used to keep projects on schedule, improve productivity, and decrease costs.

Monday, June 18, 2018

By John Matelski, President of Fuel User Group, Chief Innovation & Information Officer
DeKalb County, Georgia

The Palo Alto Networks Ignite 2018 conference has come and gone, but the value of the education and engagement that occurred in Anaheim will live on. For me, there were two big takeaways.

The first takeaway: the Palo Alto Networks Application Framework is here to stay. Palo Alto Networks continues to take a leadership role in the security industry by driving cybersecurity innovation and collaboration with its Application Framework.

Tuesday, June 5, 2018

How can cybersecurity professionals harness the power of machine learning to its fullest capabilities?

Machine learning continues to be touted as one of the most powerful tools to help quickly identify threats. In theory, this frees up time for cybersecurity professionals to focus on other tasks. However, some reports indicate that machine learning, when not approached properly, can create an unmanageable amount of false positive alerts, resulting in time and money wasted.