James Todd, KPMG: On automation and machine learning as the future of security 

James Todd, SecOps director at KPMG, describes his role as a merging of SecOps, security architecture, and cloud security. It is a particularly interesting crossing point with regard to automation. 

“It’s at that intersection of the cloud environment, being very much aligned to deploying everything as code,” says Todd. “A lot of automation is a big part of that. Being able to take dynamic action within a cloud environment is much easier and well-versed than within a...

Brightsolid launches tailored Managed Detection and Response service

Elaine Maddison, Brightsolid

Managed hybrid cloud service provider Brightsolid has launched its first Managed Detection and Response (MDR) service, tailored specifically for organisations in Scotland and the north of England.

Headquartered in Dundee with offices and data centres in Aberdeen, the company has been delivering managed services to the UK private and public sector for 25 years. It identified a need for a cybersecurity product tailored to its market, offering proactive protection against threats...

Cloud computing security risks and the common pitfalls

As more companies rely on cloud-based technology, particularly because remote working is so widespread, it’s crucial to ensure systems are secure and confidential data remains protected. Using cloud storage is not necessarily dangerous, but there are some security weaknesses that businesses should be aware of and understand how to prevent.

The following are some of the most common cybersecurity pitfalls:

Data breaches

A key cloud security risk is poor security...

Data sprawl creates risk as personal app use in business continues to rise

Someone using apps on a smartphone.

Cloud app use within organisations has continued to rise, already increasing 35% since the beginning of 2022, with an average company of 500-2,000 users uploading, creating, sharing or storing data in 138 different apps, and using an average of 1,558 distinct cloud apps each month.

This is according to Netskope, a specialist in Security Service Edge (SSE) and Zero Trust, which has released new research detailing the proliferation of cloud apps used within businesses...

Snowflake unveils cybersecurity workload to tackle threats with its Data Cloud 

A graphic of a padlock representing cybersecurity.

Data cloud specialist Snowflake has launched a cybersecurity workload that aims to enable cybersecurity teams to better protect their enterprises with the Data Cloud.

Using Snowflake’s platform and an extensive ecosystem of partners delivering security capabilities with connected applications, cybersecurity teams can quickly gain visibility and automation at cloud-scale.

Organisations today are faced with a continuously evolving threat landscape, with 55% of security...

Debunking the top myths about cloud-based physical security

Cloud Myths

Over the years, cloud-based physical security technology has been increasing in power and popularity as many businesses have begun to favour the cloud over on-premises systems. According to cloud security company Thales, 90% of companies worldwide use the cloud. The cloud is essential to data management for most businesses and there are many reasons why. 

Cloud-based technology is sweeping the security industry because of its advanced abilities and unparalleled convenience....

UK firms ‘have limited awareness’ of cloud native security

A padlock on a shed.

Around a third of companies say that between 50-75% of their apps are cloud native, yet 20% have no cloud native security strategy in place.

This is according to a study by Aqua Security, which also found that 68.3% of respondents to its survey also admit that they are not familiar with the term CNAPP (Cloud Native Application Platform Protection), the cloud native security concept introduced by analyst firm, Gartner.

Paul Calatayud, CISO at Aqua Security, said: “As...

Andrew Egoroff, ProcessUnity: On the increased cybersecurity threat and mitigating risks

Cloud Tech caught up with Andrew Egoroff, Senior Cybersecurity Specialist at ProcessUnity, to discuss the increased threat around the Russia-Ukraine crisis and how to mitigate risks from third parties.

A business can implement excellent internal cybersecurity measures, but a slip-up from a third-party vendor can have devastating consequences. ProcessUnity specialises in helping businesses determine what vendors carry the lowest risk.

“We try and evangelise the...

Google acquires cybersecurity firm Mandiant

Thomas Kurian, CEO, Google Cloud.

Google has signed a definitive agreement to acquire Mandiant, a specialist in dynamic cyber defence and response for $23.00 per share.

The all-cash transaction is valued at approximately $5.4 billion, inclusive of Mandiant’s net cash, and will see Mandiant join Google Cloud.

Organisations are facing cybersecurity challenges that have accelerated in frequency, severity and diversity, creating a global security imperative. To address these risks, enterprises need to be...

Siemplify bought out by Google Cloud to bolster security services

Israel

Siemplify, an Israeli cybersecurity start-up, has been bought out by Google’s cloud operation for $500 million (£370m).

The company specialises in end-to-end security services and will be integrated into the Google Cloud platform, and specifically its Chronicle division.

The deal follows Google’s pledge to US President Joe Biden in August 2021 that it would invest $10 billion (£7.38bn) in cybersecurity over the next five years.

Across the industry, tech...