Thursday, August 24, 2023

What? MDM

MDM - Mobile Device Management

MDM Refer to solutions, tools and process that organizations can use to manage and control mobile devices such workstations, laptop, smartphones and tablets.

The most critical function of MDM is to ensure security and compliance of these devices while being used for business purposes.

Key Aspects

Device Configuration and Settings: MDM allows administrators to remotely configure device settings, such as email accounts, Wi-Fi settings, security policies, and more. This ensures consistent configurations across all managed devices and helps maintain security standards.

Security and Compliance: MDM solutions enable administrators to enforce security policies on mobile devices. This might include requiring strong passcodes, enabling encryption, enforcing app whitelisting or blacklisting, and remotely wiping devices in case of loss or theft. This helps protect sensitive company data and ensures compliance with industry regulations.

App Management: MDM allows administrators to distribute, update, and manage applications on devices. This can involve pushing specific apps to devices, controlling app permissions, and ensuring that apps are up to date.

Remote Monitoring and Support: MDM tools often provide administrators with real-time visibility into device health, usage, and performance. This helps identify potential issues early and allows IT teams to provide remote support when users encounter problems.

Inventory Management: MDM systems keep track of the devices connected to the organization's network, including information like device models, operating systems, and hardware specifications. This information aids in managing device lifecycles.

Remote Wiping and Locking: In case a device is lost, stolen, or compromised, MDM allows administrators to remotely wipe the device's data or lock it to prevent unauthorized access.

Geolocation Tracking: Some MDM solutions offer geolocation tracking, which can help locate lost or stolen devices and aid in recovery efforts.

BYOD (Bring Your Own Device) Management: Many organizations allow employees to use their personal devices for work purposes. MDM solutions help manage these devices while maintaining a separation between personal and corporate data.

Cost Management: MDM can help manage data usage and control costs associated with mobile plans, especially for organizations with a large number of devices.

Updates and Patches: MDM systems can help ensure that devices are kept up to date with the latest software patches and updates, minimizing vulnerabilities.

MDM solutions are particularly important in today's workplace, where the use of mobile devices is ubiquitous, and organizations need to balance the benefits of mobility with the need to secure sensitive information.

Wednesday, August 23, 2023

What? SIEM

SIEM - Security Information and Event Management

In simple terms SIEM is a tools / solution that collects, aggregates, classifies and analyzes logs from variety of sources. This data is then used to identify, investigate and report security threats. Its also used to comply with security regulations. 

The tool or solution usually incorporates the below features
  • Log Collection: Gathering logs and event data from various sources across the IT environment.
  • Normalization: Standardizing the format of log data to facilitate analysis and correlation.
  • Correlation and Analysis: Identifying patterns, anomalies, and potential threats through advanced analytics.
  • Alerting and Notifications: Sending alerts to security teams when suspicious activities are detected.
  • Incident Response: Providing tools for investigating and responding to security incidents.
  • Compliance Reporting: Generating reports to meet regulatory requirements and security standards.
By centralizing security-related data and enabling real-time analysis, companies / teams detect, respond and mitigate security incidents more efficiently.

Gartner publishes Magic Quadrant which reports on the players, visionaries, challengers and leaders in the SIEM fields every year. 

SIEM Magic Quadrant - Jun 2022


Tuesday, August 22, 2023

Why? Fear

Fear as the dictionary says "a distressing emotion aroused by impending danger, evil, pain, etc., whether the threat is real or imagined" or "the feeling or condition of being afraid"

Physiologically, fear activates the body's "fight or flight" response, which involves the release of stress hormones like adrenaline and cortisol. This response leads to various changes in the body, such as increased heart rate, rapid breathing, heightened alertness, and muscle tension. These changes are designed to help the individual react quickly to the threat by either confronting it or escaping from it.

Behaviorally, fear can lead to avoidance or defensive actions. People might take actions to protect themselves from the perceived threat, such as running away, hiding, freezing in place, or using aggression to fend off the threat.

It's important to note that while fear is a natural and adaptive response, excessive or irrational fear can lead to anxiety disorders and negatively impact a person's well-being. In some cases, individuals might experience phobias, panic attacks, or other anxiety-related conditions that can interfere with their daily lives.

Overall, fear serves as a survival mechanism that helps individuals respond appropriately to potential dangers, but it also has a complex interplay with emotions, cognition, and behavior.

Fear also restricts us from learning and growth. We complain a lot while we are in fear. Usually the self confidence hits rock bottom and we stop focusing on solutions instead we see only obstacles and problems.

We need to slowly and steadily to acquire skills to face challenges and see opportunities for growth when we solve one fear at a time.

Featured Posts

How? Protecting from Malicious Code

Malicious code by definition is unwanted file or program that can cause harm to a system or compromise its function. We know this for a lon...

Popular Posts