Why Security Is Like the Cha Cha Slide

Modern cybersecurity strategy requires a dance-like balance to protect and recover from evolving threats. Organizations need to “shift left” to emphasize integrating security early in the development process to catch issues sooner. They must “shift right” to focus on enhancing response and recovery, acknowledging that breaches are a matter of how often, not when. Sounds a lot like the Cha Cha Slide, no?

A new blog post by Sam Curcuruto , principal product marketing manager at Commvault, looks at how organizations worldwide are aligning their security strategies with the National Institute of Standards and Technology (NIST) Cyber Security Framework (CSF) because it offers a good way of breaking down the tactical needs of modern cybersecurity teams. Moreover, the latest version, CSF 2.0, introduced an overarching category that had been sorely overlooked – governance.

The key point to note is that the CSF is not necessarily meant to be a “start here, finish there” type of application. The goal is for organizations to invest in people, processes, and technology across the entire framework in a balanced way that reflects business risk.

Delve into the intricacies of NIST CSF 2.0 in Sam’s blog post: Shift Left? Shift Right? Modern security can seem like the Cha Cha Slide ?

STRIVE Podcast: Cloud Computing

Subscribe: YouTube

Darren Thomson explores the critical topic of cloud computing and its security risks. Discover the major threats such as data breaches, account hijacking, and data loss, and learn why understanding the shared responsibility model is crucial for protecting your data in the cloud. Whether you’re a board member or an IT professional, this episode offers valuable advice on developing robust data protection strategies and maintaining stringent security practices to safeguard your systems in the cloud. Tune in to stay informed and secure in the ever-evolving digital landscape.

Poll of the Week

This week’s poll question: How confident are you in your organization’s ability to defend against AI-powered attacks?

Things that caught our eye this week

Time to patch your … grill? ( Nick Cerne , Bishop Fox): Security researchers at Bishop Fox discovered a vulnerability in the Wi-Fi controller used in Traeger smart grills. If you’ve got one, time to patch it. Who thought we’d ever say that?

Apple warns iPhone users in 98 countries of spyware attacks ( Manish Singh , TechCrunch): Apple has issued a new round of threat notifications to iPhone users across 98 countries, warning them of potential mercenary spyware attacks. It’s the second such alert campaign from the company this year.

Ransomware Gang Leaks Data Allegedly Stolen from Florida Department of Health ( Ionut Arghire , SecurityWeek): RansomHub is leaking data allegedly stolen from the Florida Department of Health. The cybercriminal group added the agency to its Tor-based leak site on July 2, claiming to have stolen over 100 gigabytes of data from its network, including personally identifiable information (PII) and protected health information (PHI).

What really goes on behind the scenes of your daily Uber rides? ( Generative AI ): A fascinating look at Uber’s journey from experimenting with machine learning to how it’s using generative AI today.

Commvault is heading to Black Hat USA 2024

Will you be in Las Vegas for Black Hat? Come chat with us .

?