Articles In Security

By Nancy Rand, Posted in Security

NIST has released SP 800-53 Revision 5 Public draft for review and comment. https://csrc.nist.gov/publications/detail/sp/800-53/rev-5/draft NIST is separating the controls catalog from the control baselines-SP800-53 Controls catalog, which will be online, and SP800-53B “bravo” Controls Baselines. The following are available at https://go.usa.gov/xdevj Draft SP 800-53 Revision 5 Summary of Changes from Revision 4 Comment Template Open Security Control Assessment Language (XML, JSON, YAML)... read more.

• April 10, 2020

By Nancy Rand, Posted in Security

Today’s privacy laws and regulations require privacy by design and by default for systems, networks, and applications. ISACA is creating a Privacy Certification. The certification targets IT professionals that implement defenses. It is intended to assess an individual’s ability to design and implement privacy by design. The work is for cross-functional design work and expected to bridge legal and technical functions. These individuals will work with operations, systems, security, application an... read more.

• April 10, 2020

By Michael Hawkins, Posted in Security

Recent events have compelled companies to support staff members working from home. Some aspects of working from home have similarities to mobile remote staff. But there are distinct differences that need to be taken into account due to the elevated risks that working from home networks present. The risks are human and technological in nature. Let’s review some of each. SECURING THE HOME NETWORK Severe vulnerabilities exist in low-cost consumer routers. Therefore, it is necessary to examine the make... read more.

• April 10, 2020

By Ken Phelan, Posted in Infrastructure, Security, Staffing, Support

In the early days of the COVID-19 crisis we saw many very large organizations quickly sending employees to work from home. At Gotham we weren’t surprised. We had helped many of these organizations set up the technologies behind this capability. It cost them nothing in productivity to send their employees home. If your organization found itself challenged in that effort, this article is for you. In the midst of this storm, it’s hard to guess what the “new normal” might look like on t... read more.

• April 02, 2020

By Gotham, Posted in Infrastructure, Security, Staffing, Support

Gotham Community, As we work together through the unprecedented challenges presented by the global COVID-19 (coronavirus) pandemic, I wanted to send an update on Gotham’s processes and procedures during the situation. First and foremost, our thoughts go out to all of those who have been personally impacted by COVID-19 and the many people on the front lines in this crisis. We want to express our heartfelt gratitude to first responders, health care workers, truck drivers, and the myriad of other peopl... read more.

• March 23, 2020

By Gotham, Posted in Infrastructure, Security, Staffing, Support

Gotham Community, As we work together through the unprecedented challenges presented by the global COVID-19 (coronavirus) pandemic, I wanted to send an update on Gotham’s processes and procedures during the situation. First and foremost, our thoughts go out to all of those who have been personally impacted by COVID-19 and the many people on the front lines in this crisis. We want to express our heartfelt gratitude to first responders, health care workers, truck drivers, and the myriad of other peopl... read more.

• March 23, 2020

By Brian Wagner, Posted in Infrastructure, Security, Support

This is a tough time for many of our customers. We’ve been busy helping everyone expand their remote access capabilities to deliver secure apps and desktops to users working from home around the globe. While Citrix has been able to do a good job keeping up with the orders and license fulfillment, and many other vendors have been quick to offer options to help analyze and scale out other aspects of the environment, such as firewalls and VDI infrastructure capacity planning, some vendors haven’t... read more.

• March 20, 2020

By Stephen Kilcoyne, Posted in Infrastructure, Security, Support

As the COVID-19 outbreak continues, it’s important to remember that we’re all in this together. Communities and companies are working together to help stem the tide of the outbreak. The most important thing we can all do right now is maintain social distance, and for many that means working from home.  In recent weeks, our customers have been relying on us to help them enable, monitor, and support wide-scale work from home initiatives. These efforts include extending existing Citrix enviro... read more.

• March 18, 2020

By Nancy Rand, Posted in Security

In December 2019, the PCI SSC Council released documents on the PCI SSC Contactless Payments on Commercial Off-the-Shelf (COTS) (CPoC™) program operated and managed by PCI Security Standards Council, LLC supporting the Payment Card Industry (PCI) Contactless Payments on COTS (CPoC™) Standard. Payment Card Industry (PCI) Contactless Payments on COTS (CPoC™) Program Guide Version 1.0 December 2019 Payment Card Industry (PCI) Contactless Payments on COTS (CPoC™) Security and Test Re... read more.

• March 16, 2020

By Timothy Karl, Posted in Infrastructure, Security

Microsoft Windows 7 and Windows Server 2008 reached end of life on January 14, 2020. This means that Microsoft will no longer be releasing free security patches, updates, or support when something goes wrong. Although these operating systems won’t instantly stop working or become security risks overnight, there are risks with staying on these operating systems for an extended period of time. What happens if I stay on these operating systems? There is a huge risk of being exploited by cyber crimina... read more.

• January 16, 2020