Michael Gomes’ Post

Being in this business we call cybersecurity I find it prudent to pay attention to the "business" of cybersecurity. This article is a good analysis of Crowdstrike vs SentinelOne from an investment perspective. Why is this important? If you're considering deploying a EDR solution you will probably look at both of these vendors. But, it's not just about features and functions. The financial performance and metrics contribute to the behavior and mindset of the respective vendor teams and how they interact with prospects/customers. This has a direct linkage to the "trust" quotient. Having witnessed various teams behaviors over the years and the outcomes as a result of those behaviors for their customers I can say for me "trust" is the bedrock upon which success will depend. That trust spans the entire ecosystem for positioning, selling and deploying the technology. If you don't "trust" the vendor teams interactions or performance beyond the features and functions you're in for a difficult journey. https://shorturl.at/rKGtX

Just one day left until our webinar: Four Steps to Microsoft Purview Deployment! Data drives your business, but unmanaged “dark” data can be risky. With Microsoft Purview, you can secure, cleanse, and organise your data, turning it into a valuable asset. Join Microsoft Security Veteran Adriaan Bekker tomorrow to explore the key steps for a successful Purview deployment and learn how to harness the power of AI for visibility, compliance, and data protection. Don’t miss this chance to transform your data! Register now: https://lnkd.in/eMAMNkkN #Microsoft #Purview #Cybersecurity #Workshop

In today's world of emerging cyber threats, having a comprehensive solution is imperative.

Numbers don't lie! The business value of Google Security Operations: 7 months to payback 407% three-year ROI 283% higher data ingestion volumes (you can't stop what you can't see) 87% more potential threats identified 85% more capacity for data logs 60% reduced likelihood of a major security incident 42% more efficient security operations teams Read the full IDC report to find out more. Lloyd Evans Ben C. Alain Le Moeligou

In one of the largest leaks of all time, a recent #databreach has exposed the unique passwords of 10 billion users across various platforms. This attack is a crucial reminder of the importance of #cybersecurity, especially when choosing online passwords. Here are a few tips & tricks to improve your #passwordhygiene and safeguard your online accounts from #cyberthreats: --> Use a combination of letters, numbers, and symbols, and avoid common words, names, dates, or phrases. Also, the longer the password, the harder it is to crack. --> Use a password manager to store and generate your passwords. It encrypts and remembers your passwords for you, and helps you create complex and unique passwords for each account. --> Change your passwords regularly. This will reduce the risk of your passwords being exposed or stolen by hackers. --> Enable two-factor authentication (2FA) whenever possible. It requires you to enter a code or a token sent to your phone or email, in addition to your password, adding an extra layer of protection. Learn more about how ISM’s cybersecurity experts can help you protect your digital assets: https://lnkd.in/gkUd8Vff

Exciting developments in federal civilian IT spending! With an 8.1% increase projected for fiscal 2025, agencies are prioritizing cybersecurity, AI, and enhancing the public’s digital experience. Cybersecurity alone will see a 15% boost, focusing on zero-trust strategies and supply chain security. AI investments are set to transform public services and federal operations, with a strong emphasis on talent recruitment and risk management. This is a great time for tech professionals to align with federal priorities! #TechInnovation #FederalIT #Cybersecurity #AI https://lnkd.in/eEw6TMJs

Many vendors claim to offer the "perfect" cybersecurity platform. They say it's built from "best-of-breed" or "best-in-class" solutions. But this approach is fundamentally flawed. Here's why: 1. It's based on an outdated understanding of security needs 2. It misses the real goal of platformization 3. It focuses on products, not practitioners The true aim of cybersecurity platformization is simplification. We need to reduce complexity, integration challenges, and costs. Just bundling "best-in-class" point solutions isn't the answer. Here's what we need instead: A platform that empowers security teams directly, without vendor friction. One that provides capabilities, not just features. This approach brings massive benefits: - Flexibility in utilization - Customizable workflows - No vendor lock-in - More predictable costs The future of cybersecurity isn't about finding the "perfect" product. It's about empowering human intelligence and expertise. The best platform is one that lets practitioners build the stack they need to create an ideal SecOps program for their unique challenges. I wrote about this in more detail on my new blog, SecOps Forward: https://lnkd.in/g7cBCjzX I'll be at the Omdia Analyst Summit at Black Hat tomorrow where Platformization is the key topic - come find me, would love to chat: https://lnkd.in/gCJGn7tJ

As businesses increasingly focus on software platforms, cybersecurity vendor strategy is becoming imperative. The risk of vendor lock-in and potential innovation threats are tangible concerns that must be addressed. Recent concerns raised by the US Government's about Microsoft platforms being a national security risk have further highlighted the importance of addressing these issues. In addition, large acquisitions, such as the one by United Healthcare, have caused collateral damage to a third of healthcare providers, further emphasizing the need to be cautious. One way to mitigate these risks is to diversify vendors and avoid long-term contracts. This not only helps avoid vendor lock-in but also encourages innovation in the market. It's crucial for businesses to regularly review their cybersecurity investments to ensure they are getting the best value for their spending. In today's ever-evolving cybersecurity landscape, staying vigilant and adaptable is key. Remember, a strong cybersecurity strategy is essential in today's digital landscape.

Missed our recent webinar on Microsoft Purview? No worries! You can watch it on-demand anytime. Discover the four critical areas to focus on when starting your Microsoft Purview deployment. Learn how to use Purview to gain visibility, extend compliance, and make the most of your data. Catch up now and enhance your deployment strategy: https://lnkd.in/eMAMNkkN #CISOseries #MicrosoftPurview #Cybersecurity

Wise words: 'The future of cybersecurity isn't about finding the "perfect" product. It's about empowering human intelligence and expertise. The best platform is one that lets practitioners build the stack they need to create an ideal SecOps program for their unique challenges.' There is definitely a "generic" security challenge to keep on top of, but unless you're focused on your own unique challenges you're just playing an infinite game of catch up and won't ever feel real progress.