Resources | Tripwire

Resources

Guide
Guide

Closing the Integrity Gap with NIST's Cybersecurity Framework

Mon, 08/15/2022
When the National Institute of Standards and Technology (NIST) announced that it had released its new Cybersecurity Framework in 2014, it appeared on the surface to be just one more option for organizations looking to develop a cohesive and effective cyber risk management strategy. Indeed, there are dozens of choices available and organizations have been all over the map when it comes to deciding...
Compliance
Guide
Guide

Cloud Control Buyer's Guide

Mon, 08/15/2022
Introduction The world of IT is moving to the cloud for flexibility, on-demand computing resources, and speed just to name a few benefits. Market data varies but estimates of cloud usage show that in the range of 20–25% of overall compute workloads are operating in public cloud environments today, with that expected to grow to 50% over the next 5–10 years. However, most organizations haven’t moved...
Cloud Security
Guide
Guide

Cloud Article Anthology, vol. 1

Mon, 08/15/2022
Security leaders charged with reducing their organizations’ cloud attack surfaces have to stay continually up-to-date in a security landscape that changes in the blink of an eye. This anthology of insights from some of Tripwire’s leading cloud experts will help you understand how to prioritize and tackle your cloud security imperatives. Download your copy now to learn: Eight cloud security best...
Cloud Security
Guide
Guide

Communicating Cybersecurity to Boards and Executives: A Workbook to Help Build Cybersecurity Literacy

Mon, 08/15/2022
We’ve all heard, “it’s not a matter of if you’ll be breached, but when.” If a breach occurs, is your organization prepared to detect it quickly? Now more than ever, corporate executives and boards are asking for assurance that the organization and its sensitive data is adequately protected. This cybersecurity self-assessment is derived from the Cyber-Risk and Oversight Handbook developed by the...
Cybersecurity Skills Gap
Guide
Guide

How to Achieve Compliance with the NIS Directive

Mon, 08/15/2022
Network and information systems (NIS) and the essential functions they support play a vital role in society from ensuring the supply of electricity, water, oil and gas to the provisioning of healthcare and the safety of passenger and freight transport. In addition, computerized systems are performing vital safety-related functions designed to protect human lives. For example, such systems are...
Compliance
Guide
Guide

Actionable Threat Intelligence: Automated IoC Matching with Tripwire

Mon, 08/15/2022
A key security challenge is finding and rooting out malware that has already become embedded on key assets. Organizations today have myriad threat intelligence sources to leverage. However, simply getting the intelligence into your organization is not enough. Unless you have a way to operationalize myriad threat intelligence sources to make it actionable and useful, threat intelligence just...
Incident Detection & Investigation
Guide
Guide

Adjusting to the Reality of Risk Management Framework

Mon, 08/15/2022
The Risk Management Framework (RMF) is an approach to systems security management that adjusts security controls based on risk factors. The practice involves a continuous cycle of identifying new threats, choosing effective controls, measuring their effectiveness and improving system security. Federal entities need to understand and utilize RMF as a core part of their FISMA compliance activities...
Vulnerability & Risk Management
Guide
Guide

Beyond FIM: 10 More Tripwire Capabilities You Should Know

Mon, 08/15/2022
Tripwire is best known for being the progenitor of file integrity monitoring (FIM), a security control based on the idea that every cybersecurity breach and compliance misconfiguration, at its core, begins with one simple change. FIM is the process of detecting system changes and alerting on changes that represent increased security risk. It works hand in hand with security configuration...
File Integrity & Change Monitoring
Security Configuration Management
Guide
Guide

Building a Mature Vulnerability Management Program

Mon, 08/15/2022
A successful vulnerability management program requires more than the right technology. It requires dedicated people and mature processes. When done properly, the result can be a continuously improving risk management system for your organization. This white paper was written by CISSP-certified Tripwire system engineers with extensive experience in implementation of vulnerability management...
Vulnerability & Risk Management
Guide
Guide

The Five Stages of Vulnerability Management Maturity

Mon, 08/15/2022
One key element of an effective information security program within your organization is having a good vulnerability management (VM) program, as it can identify critical risks. Most, if not all, regulatory policies require a VM program, and information security frameworks advise implementing VM as one of first things an organization should do when building their information security program...
Vulnerability & Risk Management
Guide
Guide

9 Steps for Maturing Beyond Checkbox Compliance

Mon, 08/15/2022
A common mistake many organizations make is approaching cybersecurity as a series of actions taken in order to check the right compliance boxes. If this sounds familiar, it’s likely that you’ve witnessed something similar to the cycle of crisis-driven audit preparation, a suspenseful audit, remediating based on those findings, and waiting until the next hurried audit preparation phase returns...
Compliance