As companies tighten their belts, the need for coordination between IT and Cybersecurity Operations has never been more urgent. Now is the time to align organizational priorities and budgets.

Dark Reading recently took a measure of the relationship between IT and Security teams. Join us as we discuss the survey, share it's findings and review best practices for CIOs and other leadership roles.

You've known for a long time that enhancing your security is critical as you move more workloads from the on-premises datacenter to the cloud. Many organizations are being proactive by reexamining their cloud security posture. Given the events of the last couple months, it's a good time to resurface the Cloud Security Alliance's (CSA) "Egregious 11" list of top vulnerabilities and threats.

This CSA's report shines a light on the challenges security teams face, offers key takeaways from experts in the field, shares security guidance, and shows where CSA's cloud control matrix, or CCM, provides coverage.

Gain insight into the "Egregious 11" list of security issues in the cloud and learn more about:

• Key takeaways from cloud security experts
• Domain-based security guidance
• Cloud controls matrix (CCM) coverage

As organizations move to the cloud, encrypt communications, adopt IoT and manage third-party vendors, the complexity of the network increases--impeding visibility and impacting security. In this SANS survey, 59% believe that lack of network visibility poses a high or very high risk to their operations, and 64% of respondents experienced at least one compromise over the past 12 months.

Network data flowing between clients and applications is a rich source of information, which can be looked at as the ground source of truth. Organizations that monitor their network data can develop more in-depth visibility to detect and respond to threats, despite skyrocketing complexity.

Read this report to learn how to do more with the network data you already have and what to look for in a network visibility tool.

The 2019 SANS Security Operations Center survey showed that SOC managers list lack of integration between security and IT and network operations as one of the major obstacles to both their effectiveness in dealing with evolving threats and their ability to efficiently protect the business in constrained budget environments. Less than 40% of SOC managers say that the SOC and the NOC are effectively integrated, and those who report higher levels of integration show improvement in reducing time to detect, respond and contain.

SANS director John Pescatore interviewed Mitch Roberson, Director for Enterprise Systems at Curo Financial, in a SANS WhatWorks case study about Curo Financial's selection, deployment and experience using ExtraHop's Reveal(x). Roberson provided details of the selection and deployment of Reveal(x) to increase visibility into network traffic, gaining detailed and timely insight into performance and security issues and crossing organizational siloes by using a common tool and dashboard for application owners, network administrators and security analysts.

In this case study, you will learn:
• How Curo Financial uses Reveal(x) to drive collaboration between security and IT Operations teams
• How their security, network, and application teams use network detection and response
• Best practices for considering ExtraHop Reveal(x)

"Integrated NetOps and SecOps delivers tangible results: 38% OPEX reduction, 37% risk reduction, and much more."

Security operations (SecOps) and network teams (NetOps) have traditionally acted separately but increasing IT complexity and scale means that aligning these two groups is a critical step towards delivering a fast and secure user experience.

A recent global SANS Institute survey found that only 30 percent of SecOps teams already work closely with NetOps, so how can you convince your organization to combine forces in order to reduce waste, speed up threat detection and response, and improve your business agility?

Read this whitepaper for the five key value drivers of an integrated SOC and NOC, as well as clear strategies to help you move forward.

Is your enterprise data being 'phoned home' by third-party vendors?

Enterprises rely on third-party vendors for everything from infrastructure and applications to security, but then they often don't know how those vendors are using their data. In this ExtraHop Security Advisor, we discuss four real-world examples of data being *phoned home* and share best practices for ensuring data security, privacy, and compliance.

Download your copy now to learn how you can recognize these instances and prevent vendors from misusing data.

Most businesses use at least some public cloud infrastructure such as AWS, Azure, or Google Cloud Platform. But, as a security specialist do you know the vulnerabilities? What is your responsibility and what should be handled by your cloud vendor? In this report, IDC compiles learnings and best practices for cloud security.

You will learn:

• Which pieces of cloud security fall to service providers vs. users under the Shared Responsibility Model
• What are the suggested security practices for cloud customers?
• Which technology solutions does IDC recommend for cloud security?

And, to help you implement your plan, a checklist with questions to ask any cloud security technology solution vendor to help you narrow down which products and services are right for your business

Until recently, many IT security practitioners turned to legacy tools as a means of securing the growing amount of east-west network traffic in cloud environments. With the introduction of traffic mirroring and virtual network taps, cloud-native network detection and response (NDR) solutions such as ExtraHop Reveal(x) Cloud can help security teams overcome the challenges of visibility at a cloud scale:

"ExtraHop's new Reveal(x) Clous SaaS offering for AWS takes the deployment burden away from AWS customers, enabling fast service provisioning and instant asset discovery, and providing threat detection, investigation, and response."

Download your copy of the full report from Enterprise Management Associates to learn more about:

• The key benefits of virtual network taps provided by Microsoft Azure and Amazon Web Services
• ExtraHop's new Reveal(x) Cloud SaaS-based network detection and response solution

Complex configurations don't mix well with rapidly spun-up components, and when your company uses multiple cloud providers to host your critical assets, the odds of a major security event get that much higher.

So how do you close visibility gaps and integrate conflicting datasets from different providers, and how do you adjust your current incident response strategies to respond to cloud-specific threats?

Read the report from SANS Instructor Dave Shackleford to learn how your peers across tech, finance, cybersecurity, and other industries address the following questions and more:

• What's the most dangerous cloud security vulnerability that you might think is only hype?
• What are the biggest challenges in adapting IR and forensics analysis to the cloud?
• What are the most effective security controls for the cloud, and how can you avoid common implementation roadblocks?

Digital transformation to the cloud is driving innovation, but it's also leaving cloud adopters open to new attack vectors.

Download "Network Detection and Response: Cloud Security's Missing Link" to see how this emerging cybersecurity category helps enterprises protect business-critical data and applications in the cloud.

This new eBook discusses how NDR solutions leverage cloud virtual taps to complete Gartner's SOC Visibility Triad (SIEM, EDR, and NDR) and fill analytics gaps in monitoring, threat hunting, investigation, and response.