Featured Posts Archives

Leveraging Metrics in Google SecOps SIEM for Enhanced Threat Detection

Google Security Operations (SecOps) SIEM offers powerful tools for threat detection, and one of its most valuable features is the use of metrics within YARA-L rules. Metrics allow you to aggregate historical data over extended

Rethinking Threat Exposure Management: A Unified Approach to Reducing Risk

By Michael Mumcuoglu, Co-Founder and CEO, CardinalOps In today’s rapidly evolving threat landscape, organizations face an overwhelming challenge: understanding and addressing the many types of security exposures that put them at risk. These exposures include

Control Your Threat Exposure

CardinalOps Threat Exposure Management is the only AI-powered CTEM platform to integrate both prevention and detection controls in a unified view to drive intelligent prioritization and remediation of your riskiest exposures.

Optimize Security Controls with Continuous Threat Exposure Management (CTEM)

In the dynamic landscape of cybersecurity, staying ahead of threats requires an evolved approach to managing security tools, and preventing and detecting potential attacks. Traditional vulnerability management and breach-and-attack simulation tools have proven to be

CardinalOps Case Study: Repsol Increases SOC Efficiency and Productivity While Fixing Detection Gaps

See how Repsol, one of the world’s largest energy companies, integrated CardinalOps into their security operations and helped to optimize their SOC with automation, enhanced speed, and accuracy. With CardinalOps, Repsol SecOps significantly increased its

CardinalOps Case Study: Global Bank Takes Control of their Detection Posture

See how one of the world’s largest banks leveraged the CardinalOps platform to automate their MITRE ATT&CK mapping and maximize their detection coverage and fidelity. The multinational financial services organization was able to gain visibility

Enhancing Cyber Defense Through Automated Security Control Assessment (ASCA)

A chaotic threat landscape and rapidly changing attack techniques has organizations facing increased pressure to deal with persistent threats by developing and deploying new security controls and being able to identify and manage misconfigured controls.

CardinalOps Now Available for Purchase on the CrowdStrike Marketplace

CardinalOps, the leading detection posture management company, today announced that its CardinalOps Platform for Falcon® LogScale and CardinalOps TI-Ops for Falcon® Adversary Intelligence Premium are now available for purchase in the CrowdStrike Marketplace.

Detection Posture Management: Reduce your organization’s exposure to threats

Even the best, most mature security teams must plan for worst-case scenarios – when an attack has slipped past their defensive and preventative technologies and becomes a threat. Detection is the last line of defense

CardinalOps Launches TI-Ops to Operationalize Adversary Intelligence through AI and Automation

Turn real adversary behaviors (TTPs) into actionable detection Organizations are struggling to keep up with an evolving threat landscape and security teams are increasingly burdened with the pressure to build an effective cyber defense against

2024 Report on State of SIEM Detection Risk

In our fourth annual report, CardinalOps set out to gain visibility into the current state of use case development and threat detection coverage in enterprise SOCs. We gathered and analyzed data from production SIEM instances.

Safeguarding Azure Blobs: Detecting Public Network Access Configurations

Microsoft Azure utilizes blobs to house large amounts of unstructured data. An Azure blob can be configured to be accessed from specific IP addresses only. This is the common configuration and a known best practice