VerSprite Security Resources

[Video 1] How secure are your surroundings while working outside your company’s office? In this free training video, we’ll teach you important security precautions to consider while working at home or in a public space.

[Video 2] In this free security training video, we’ll discuss how to better protect your home network while you work remotely. Also, find out what home office devices may be putting your sensitive company data at risk.

[Video 3] Phishing emails, Vishing, and fake websites are easy ways malicious threat actors take advantage of remote employees. In this free training video, learn key indicators for identifying and avoiding phishing attacks.

[Video 4] As a remote IT or tech professional, it’s important to maintain your company’s cybersecurity posture. This free video will give you tips to create new security protocols while employees work from home, including VPN patching and communication.

DevSecOps efforts are changing how we govern security controls via greater automation tools that are readily available to leverage. Watch this webinar to discover how to “shift left” in terms of implementing critical security controls during the pre-implementation phases of the Software Development Life Cycle (SDLC).

PASTA is the Process for Attack Simulation and Threat Analysis and is a risk-based threat modeling methodology aimed at identifying viable threat patterns against an application or system environment. The goal is to align business objectives with technical requirements while taking into account business impact analysis and compliance requirements.

At this point, Organizational Threat Models are not something that snap on as a plugin to a SIEM or threat intel subscription feed, but something that can be instead used to train SOC analysts on how to think in the trenches when triaging security events and incidents.

The foundation of VerSprite’s penetration testing service is based on emulating realistic attacks by a malicious actor through the use of PASTA (Process for Attack Simulation and Threat Analysis).

In this blog post we will take a deeper dive into exactly how to approach integrating security into your Software Development LifeCycle (SDLC). In addition, we will delve into one available resource that provides guidance on how to get started.