Comprehensive software reviews to make better IT decisions
Security or Quality…Why Can’t I Have Both?
A recent survey sponsored by SAI Global indicates that consumers value data protection over quality. According to the results, three quarters of the respondents said they would be willing to live with lesser quality products if it meant increased security.
Source: SAI Global Trust Report 2019
“GDPR, and a steady beat of high-profile data breaches, has shifted the way consumers think about their data and its value in our digital economy,” said Peter Granat, CEO at SAI Global. “The balance of power has tipped to consumers as reputations now hinge on trust and transparency credentials over cost.”
Vendors face increasing scrutiny on multiple fronts:
- Law makers at various levels are getting involved, albeit slowly in some cases; the European Union’s General Data Protection Regulation (GDPR) recently celebrated its first anniversary, while other jurisdictions are beginning to evaluate the need for similar protections.
- Data breaches and vendors playing fast and loose with their customers’ sensitive information have been dominating the headlines recently; lawsuits, settlements, and loss of reputation due to these actions cost companies millions of dollars.
- SAI Global’s report indicates that consumers may be the next faction to attempt to influence corporate behavior.
The debate regarding consumer influence is an interesting one. On one hand, consumers have all of the power and can influence a company’s voluntary protection policies and procedures through their spending habits. On the other hand, this may not always be as easy as it appears. For consumers to have an impact, viable options must exist to test the underpinning conclusions of the survey results outlined above. Without options, the purchasing decision becomes binary – a purchase is made or not made – and binary decisions won’t change corporate behavior. For that to happen, market share needs to shift from the “traditional” vendor to the disruptor, with the disruptor being the one willing to provide greater protections to consumers’ sensitive data.
Want to Know More?
Q headlines a bevy of announcements at AWS re:Invent 2023 in Las Vegas that shed more light on the cloud service provider’s AI strategy and where its differentiation from other vendors lies.
This note outlines some tips and tricks that you should be aware of when embarking on the installation and configuration of a Kubernetes cluster. Such an endeavor should only be attempted if the need for an enterprise-grade container orchestration solution is required.
It’s simply not enough today to pit your traditional application security toolkit against today’s advanced threats, especially those attacks that target APIs or mobile platforms. Bolstering your CI/CD pipeline by introducing more advanced and accurate SAST, SCA, IAST, and DAST will most certainly improve your security posture, but the journey does not end there. There are attacks and use cases that need careful consideration for how you approach security. Appdome believes it has those unknown challenges addressed and can significantly improve your application security program with very little effort from your development and security team, a welcome change from solutions that required a good bit of work to introduce problem-free into your code base four years ago.
This post provides a review of Zoom’s 2023 conference, Zoomtopia 2023. Core aspects covered include what major product releases and upgrades Zoom announced at Zoomtopia 2023, and what these announcements mean for Zoom’s market positioning in 2024.
Contact center as a service (CCaaS) enterprise providers are steamrollering ahead with embedding generative AI functionality in their platforms – whether organizations are prepared for it or not. In this post, I explore a positive outlook for how generative AI can be used to enhance organizations' customer experience capabilities while generating ROI. This includes: 1. Listing the major use cases for generative AI in the contact center. 2. Discussing how we might calculate ROI from utilizing generative AI in the contact center. 3. Considering what organizations can do to prepare for CCaaS vendors’ release of generative AI functionality.
In June 2023, I decided to remove the password on my primary email account as well as the one used to log-in to all of my devices. Did I wait too long? Am I too optimistic this will work without issue? Are there kinks that still need to be worked out? I recently attended Identiverse 2023 and got a FIDO2 hardware token intending at some point in the future to go passwordless. Why wait though? I was pumped up with all the passkey and passwordless sessions I attended and was eager to try this out and share my experience.
If you’re in the market for a password manager or are interested in secrets management, Bitwarden has a powerful platform for you. This unified platform is delivered via a thoughtful and intuitive UI, which Bitwarden Password Manager users will recognize. Bitwarden ranks as top of the Leader Quadrant in SoftwareReviews under the Password Management category, and the company believes its optimized, wide-range passwordless solution set will address most organizations’ needs.
Next-generation firewalls were smarter than previous firewalls, able to deeply analyze traffic and integrate with complementary security solutions. Today our needs are more complex, however, with a 742% increase in software supply chain attacks over the past three years. Sonatype Nexus Firewall has been paying attention and claims its firewall product is smarter about these attacks.
Have you ever thought of what else you could do to take your security operations center (SOC) to the next level and focus on prevention? Look no further – external attack surface management (EASM) was a popular managed service and topic of discussion at Rivest–Shamir–Adleman (RSA) Conference 2023, named after a popular public-key cryptosystem.