By Greg Keller Posted May 27, 2014
About two weeks ago, I sat on a panel in Costa Mesa, California for the OCTANe Innovation Series. The event was on risks and costs associated with security in a hybrid IT world. Here are a couple highlights we covered on the panel:
- We talked about the many PCI (or otherwise) compliant organizations that have been successfully attacked and compromised each year, emphasizing the difference between compliance and security: compliance does not equal security – it’s a just a starting point.
- We covered the value of mutli-layered defense, which makes it much more difficult for an attacker to penetrate your network security defenses. Whether it’s purely monitoring your server activity or creating an access barrier, extra layers of defense can make life immensely more difficult for an attacker.
- Lastly, one big takeaway was found in discussing the rise of social engineering attacks exposing the firm’s weakest link: employees. Compromised employee accounts demand our attention, and there are measures that can be taken to prevent events such as the recent eBay breach back to the MongoHQ breach.
Increasing Identity Management Security
All of these items are hugely relevant to us at JumpCloud® and our Directory-as-a-Service® platform. Since credentials are the most sought after digital assets of an organization, it’s no surprise that protecting organizations from being compromised was a hot topic. Modern identity management platforms are chasing this problem and more.
The OCTANe panel was a great event for IT system administrators, and we have to give a big thanks to OCTANe for hosting us and putting on such a spectacular event. Check out their list of events, and make sure you catch one in the future!