<img src="https://ws.zoominfo.com/pixel/6169bf9791429100154fc0a2" width="1" height="1" style="display: none;">

Curious about how StrongDM works? 🤔 Learn more here!

Search
Close icon
Search bar icon
blog /
Token Security Podcast | Johnathan Hunt, VP of Information Security at InVision Talks Secure Code

Token Security Podcast | Johnathan Hunt, VP of Information Security at InVision Talks Secure Code

In this episode Max Saltonstall and Justin McCarthy are joined by Johnathan Hunt, VP of Information Security at InVision to talk about pen testing, bug bounty programs, and secure code.
How to Write Your Software Development Lifecycle Policy

How to Write Your Software Development Lifecycle Policy

A staggering amount of cybersecurity breaches are caused by software vulnerabilities. From the early worms of the 1980s through the early 2000s - like Blaster, Code Red, and Melissa - to the notable Petya and WannaCry of the past few years, these vulnerabilities are all rooted in software flaws that allowed systems to be exploited. A software development lifecycle (SDLC) policy helps your company not suffer a similar fate by ensuring software goes through a testing process, is built as securely
Token Security Podcast | NYC Cyber Command

Token Security Podcast | NYC Cyber Command

This episode Max Saltonstall sits down in Manhattan with Quiessence Phillips, Deputy CISO and Head of Threat Management, City of New York and Colin Ahern, Deputy CISO, City of New York.
Token Security Podcast | Andrew Mulholland, Head of Core Infrastructure at BuzzFeed

Token Security Podcast | Andrew Mulholland, Head of Core Infrastructure at BuzzFeed

In this episode Justin McCarthy sits down with Andrew Mulholland, head of core infrastructure at BuzzFeed to talk about security incident response, remote access policy, and a money-back guarantee for OSS.
5 Disaster Recovery Policy (DRP) Best Practices to Know

5 Disaster Recovery Policy (DRP) Best Practices to Know

The first step in this policy is to define the critical processes and assets necessary for you to maintain minimum business functions after a disaster.
Defining Your IT Vendor Management Policy

Defining Your IT Vendor Management Policy

As you work through the rigorous SOC 2 requirements, it is easy to get tunnel vision because so much of your work focuses on protecting your customers and their information. But what about the vendors you work with? Do you have a third-party IT vendor management strategy to address the risks they bring to your organization?
5 Password Policy Best Practices You Can Implement

5 Password Policy Best Practices You Can Implement

Passwords are one of the most common targets for hackers, so it’s imperative that your company enforces a strong password policy. This policy will not only define the requirements of the password itself but the procedure your organization will use to select and securely manage passwords.
4 Steps To Work Remotely While Maintaining Security | Remote Access Policy

4 Steps To Work Remotely While Maintaining Security | Remote Access Policy

The purpose of a Remote Access Policy is to keep your employees productive from anywhere without sacrificing security.
Workstation Security Policy Best Practices

Workstation Security Policy Best Practices

In the workstation security policy, you will define rules intended to reduce the risk of data loss/exposure through workstations.
Encryption Policy Best Practices | TLS vs SSL

Encryption Policy Best Practices | TLS vs SSL

You wouldn’t leave the house without making sure your doors and windows were locked, and that any valuables were hidden or secured in a safe. That way, if you were robbed, the burglar would have a difficult time accessing your most precious assets. In the same way, you need to make sure your organization’s critical data is well protected.
4 Things to Consider When Writing a Data Center Security Policy

4 Things to Consider When Writing a Data Center Security Policy

Should you host data on-premise or in the cloud? Who is responsible for security? The company who owns the data, the cloud provider, or both?
Best Practices When Writing Your Access Onboarding & Termination Policy

Best Practices When Writing Your Access Onboarding & Termination Policy

It's easy to focus on cybersecurity threats like social engineering and phishing. However, internal threats, such as human error and disgruntled employees, can be just as dangerous - and are often overlooked. A mature onboarding and termination policy that leverages least privilege access is essential to preventing a data breach.
How to Reply to a Request for Information (RFI) Request | A Practical Guide

How to Reply to a Request for Information (RFI) Request | A Practical Guide

Take a deep breath - you’ve got this. Once your blood pressure is back to a reasonable level, start by looking at the RFI itself and ask yourself some questions.
Information Security Policy Best Practices

Information Security Policy Best Practices

It’s important to keep your Information Security Policy high level. Here are some key points your information security policy should include.
StrongDM app UI showing available infrastructure resources
Connect your first server or database, without any agents, in 5 minutes.