Author Archives: Albie Swartz

What you should do about the Zerologon vulnerability

UncategorizedBy Albie Swartz September 28, 2020

The Microsoft Zerologon vulnerability gives the the bad guys a way to get in. Guess how? By sending a string of zeros to the server, of course. It’s a nasty vulnerability that’s being exploited in the wild. Even though Microsoft released a patch, many companies wait up to 90 days before patching. Have you patched?…

Two fundamental purposes of your newly founded Architecture Review Board (ARB)

Enterprise ArchitectureBy Albie Swartz July 11, 2020

You’ve just established an Architecture Review Board (ARB). Congratulations. Your nascent board should serve two fundamental, primary purposes: 1: It’s a Rubber stamp – for better or worse. Solutions have to make some sense relative to business goals and objectives. The ARB performs a strong gut-check on all technology investments. Does everything fits together? Is…

People only see the tip of the cybersecurity iceberg until they they are thrown into the water

Cyber ProgramBy Albie Swartz June 30, 2020

While conducting new business development and educating people on the field of cybersecurity, a predictable pattern has emerged. This pattern is a preconception about the size and complexity of cybersecurity. From the outside, people tend to view cybersecurity as a narrow field. It seems fair to say that people don’t realize the magnitude of what’s…

The right way to deploy file and folder access auditing for the first time

Access ControlBy Albie Swartz June 24, 2020

As more companies find themselves in regulated spaces, controls around data access must become stricter. One way to achieve this is to enable file and folder access auditing. This is a great feature because it enhances accountability. You can catch people attempting to circumvent controls or violate policy. This audit data can be used to…

What you need to know about cybersecurity from MSSP and IT MSP

Cyber ProgramBy Albie Swartz June 22, 2020

Managed Security Services Providers (MSSP) protect businesses by focusing on cybersecurity, compliance, and risk. IT Managed Services Providers (IT MSP) keep technology running by providing end-user support and back-end operations. Many organizations falsely believe that accountability for the security program shifts to their IT MSP. As a result, businesses are putting themselves at increased risk…

Are you a Business Associate under HIPAA as an IT Managed Services Provider?

Cyber ProgramBy Albie Swartz April 26, 2020

Business Associate Agreements and PHI. To sign, or not to sign? That is the question. Many of us often find ourselves making decisions with legal implications. Of course we consult with our legal counsel to be sure, yet sometimes things are a double-edged sword. Such is the case when signing legal documents. Today we’re going…