Recently, for our open-sourced ee-outliers framework, we released a new outlier model capable of detecting the sudden appearance of one or multiple field values of an Elasticsearch event. For example, this model could spot new TLDs that are suddenly being contacted (DNS/SSL) and communicating with C2 domains. It could also detect an executable that suddenly …
Continue reading “Detecting the sudden appearance of events with ee-outliers and Elasticsearch”
The ISO 27001 Certification silver bullet An ISO 27001 certification is often used by a supplier to assure its customers they take information security seriously. This doesnât mean that they will not suffer any security breaches but maintaining a well-designed ISMS will decrease the likelihood from happening. And thatâs why many organizations rely on an …
Continue reading “Reviewing an ISO 27001 certificate: a checklist”
In our previous blogpost, we discussed how to take some of the dust off your Acceptable Use Policy (AUP) or IT security code of conduct, making it a bit more user friendly and educational. Now, we’re giving you a sort of checklist of the topics to discuss in a typical AUP, based on the table …
Continue reading “A checklist to populate your Acceptable Use Policy”
