blog

Security Controls for Enterprise “Internet of Things”
Author:
Unatek
Fri, 11/17/2017 - 16:19

Every enterprise will be affected by the benefits and challenges that Internet of Things (IoT), the growing phenomenon by which not only people, but also “things” — vehicles, commercial and industrial equipment, medical devices, remote sensors in natural environments — are linked to networks that are connected to the internet. The profound impact on businesses and the business value it brings will to a large extent be dependent upon overcoming the overwhelming Cybersecurity challenges that characterize the phenomenon of connecting “Things” in the Internet.

TRANSLATING ENTERPRISE RISK MANAGEMENT INTO GAINS
Author:
Unatek
Mon, 06/12/2017 - 16:27

Enterprise Risk Management (ERM) market are largely driven by the Finance & Banking (F&B) sector’s interpretation of what ERM means. Classical ERM takes traditional risk methodology in the areas of Credit, Market and Operational risk management and extended that out to other areas of their businesses and called that ERM. In actuality the F&B institution’s methodology for managing risk is applying too much emphasis on backward-looking analysis of loss, as opposed to a more forward-looking speculation about potential loss (or risk) in future.

CLOSING YOUR COMPANY’S GATES TO HACKERS
Author:
Unatek
Sun, 06/11/2017 - 04:32

It takes a hacker only one web page and one email to gain access to a major corporation’s internal network. Catchy we know, but this is not an exaggeration of what an attacker can do to gain access on their internal network. In culmination with exploiting a few systems on the internal network, they can have free reign.

HIPAA & Cloud Computing
Author:
Bhavana
Mon, 12/19/2016 - 11:48

With the proliferation and widespread adoption of cloud computing solutions, HIPAA covered entities and business associates are unsure whether and how they can take advantage of cloud computing while complying with regulations protecting the privacy and security of electronic protected health information (ePHI). 

Network Device Security Assessment (NDSA)
Author:
Bhavana
Fri, 09/30/2016 - 19:05

Analysis of network device configurations focused on security hardening of the individual devices relative to Unatek security best practices

Are you sure that you know what a Penetration Test is?
Author:
Bhavana
Mon, 09/26/2016 - 16:16

There are a lot of different ways that penetration testing is described, conducted and marketed.  Often confused with conducting a “vulnerability scan”, “compliance audit” or “security assessment”, penetration testing stands apart from these efforts in a few critical ways:

A penetration test doesn’t stop at simply uncovering vulnerabilities:  it goes the next step to actively exploit those vulnerabilities in order to prove (or disprove) real-world attack vectors against an organization’s IT assets, data, humans, and/or physical security.

Are you worried about HIPAA Audits?
Author:
Bhavana
Mon, 09/26/2016 - 16:13

Probability of HIPAA audits is increasing as the Office for Civil Rights (OCR) continues to police HIPAA violations aggressively. Data breach has become a rampant problem in the healthcare industry and in order to prevent an audit, practices must address their potential issues under HIPAA.