the New York Times released its 2018 Good Tech Awards

Hello, 2019.
January is off to a strong start as we celebrate the incredible milestones of global tech nonprofits creating a more equitable and just world.

No matter what your New Year’s resolutions may be

stay with us as we share positive tech news and document the progress of the tech nonprofit sector through 2019 and beyond.

Photo credit: Code for America New York Times 2018 Good Tech Awards For the second year

the New York Times released its 2018 Good Tech Awards.
From access to bankruptcy, to drones for healthcare delivery, to fighting A.I.’s bias, this list is flush with innovations that make us (almost) forget last year’s headlines.
Every Other Industry Has A Safety Label.
Now Tech Does, Too From Certified Organic apples to ADA Approved toothpaste, industries are rife with certifications that tell you what’s under the hood.
Thanks to Thingscon, tech now has a safety certification too.

It’s called the Trustable Technology Mark

Photo credit: Nexleaf Analytics   How The Internet Of Things And Data Analytics Contribute To Sustainable Development The Beam interviewed Nexleaf CEO Nithya Ramanathan on how her team uses data and sensor technology to protect vaccines from the heat in low-income countries.

The Top Ten World Positive Stories Of 2018 We love a top ten list at Fast Forward

This is especially true when a partner and alumni are featured side by side (we’re looking at you Callisto and BlackRock!).
Photo credit: MyMaf Introducing MAF’s New Mobile App: MyMAF Financial education is no longer out of reach.

Mission Asset Fund announced the launch of MyMAF

the mobile app delivering virtual financial coaching to help low-income & immigrant families achieve their dreams.

These Founders Killed It In 2018

And Their Returns Are All Impact Ethical engineering, digital access to food stamps, solutions for sexual misconduct.
In Forbes, Shannon Farley celebrates a few of 2018’s biggest women-led social impact wins.
This Healthcare Model From Tribal Odisha Has Been Replicated In Canada.

Philippines & Syria Through an open-source app

Intelehealth is providing high-quality care via telemedicine.
Efforts for Good catalogues how the model has been replicated in countries across the globe.
Photo by Mustafa Waad Saeed, winner of Wikimedia’s worldwide photo contest Facebook Makes $1 Million Gift To Support The Future Of Free Knowledge The Wikimedia Foundation announces a $1 Million gift from Facebook.

The gift enables long-term sustainability of projects like Wikipedia

the free, online encyclopedia used by over 35 Million people.

Have some uplifting tech news for What’s Good in Tech

Send it to [email protected]
What’s Good in Tech, Issue 11What’s Good in Tech, Issue 2What’s Good in Tech, Issue 12What’s Good in Tech, Issue 1.

the New York Times released its 2018 Good Tech Awards

Hello, 2019.
January is off to a strong start as we celebrate the incredible milestones of global tech nonprofits creating a more equitable and just world.

No matter what your New Year’s resolutions may be

stay with us as we share positive tech news and document the progress of the tech nonprofit sector through 2019 and beyond.

Photo credit: Code for America New York Times 2018 Good Tech Awards For the second year

the New York Times released its 2018 Good Tech Awards.
From access to bankruptcy, to drones for healthcare delivery, to fighting A.I.’s bias, this list is flush with innovations that make us (almost) forget last year’s headlines.
Every Other Industry Has A Safety Label.
Now Tech Does, Too From Certified Organic apples to ADA Approved toothpaste, industries are rife with certifications that tell you what’s under the hood.
Thanks to Thingscon, tech now has a safety certification too.

It’s called the Trustable Technology Mark

Photo credit: Nexleaf Analytics   How The Internet Of Things And Data Analytics Contribute To Sustainable Development The Beam interviewed Nexleaf CEO Nithya Ramanathan on how her team uses data and sensor technology to protect vaccines from the heat in low-income countries.

The Top Ten World Positive Stories Of 2018 We love a top ten list at Fast Forward

This is especially true when a partner and alumni are featured side by side (we’re looking at you Callisto and BlackRock!).
Photo credit: MyMaf Introducing MAF’s New Mobile App: MyMAF Financial education is no longer out of reach.

Mission Asset Fund announced the launch of MyMAF

the mobile app delivering virtual financial coaching to help low-income & immigrant families achieve their dreams.

These Founders Killed It In 2018

And Their Returns Are All Impact Ethical engineering, digital access to food stamps, solutions for sexual misconduct.
In Forbes, Shannon Farley celebrates a few of 2018’s biggest women-led social impact wins.
This Healthcare Model From Tribal Odisha Has Been Replicated In Canada.

Philippines & Syria Through an open-source app

Intelehealth is providing high-quality care via telemedicine.
Efforts for Good catalogues how the model has been replicated in countries across the globe.
Photo by Mustafa Waad Saeed, winner of Wikimedia’s worldwide photo contest Facebook Makes $1 Million Gift To Support The Future Of Free Knowledge The Wikimedia Foundation announces a $1 Million gift from Facebook.

The gift enables long-term sustainability of projects like Wikipedia

the free, online encyclopedia used by over 35 Million people.

Have some uplifting tech news for What’s Good in Tech

Send it to [email protected]
What’s Good in Tech, Issue 11What’s Good in Tech, Issue 2What’s Good in Tech, Issue 12What’s Good in Tech, Issue 1.

There is no need for John in sales to access these rooms

In the first two parts of this blog series I focused on Gathering Pertinent Data for a Firewall Audit and Reviewing the Firewall Change Control Process.
In this third installment, I’d like to examine the steps you need to audit your firewalls’ physical and operating systems’ security.
This is important because as there is risk within firewall policies and change control processes that you must get a handle on, there is also potential risk within the firewall configuration itself.
As part of your audit-readiness and goal of being continuously in compliance with internal policies or external regulations and standards, a key step is to make sure your firewalls are hardened against the most fundamental types of attack.
Step 3: Audit Your Firewalls’ Physical and OS Security Make sure you can define and enforce corporate baselines… and report against them so you know where you stand.
By reporting against these baselines that you determine, you will always be “in the know” of your firewalls’ configuration status and how they stack up to the policy.
Some more specific steps to consider are: Ensure your firewalls and management servers are physically secured with controlled access.
Just as your firewalls filter traffic, you need to physically filter accessibility to your firewalls.
Ensure there is a current list of authorized personnel permitted to access the firewall server rooms.
There is no need for John in sales to access these rooms.
Verify that all appropriate vendor patches and updates have been applied.
Financially motivated cybercriminals look for openings to exploit in your security defenses.
Don’t give them any easy target.

Ensure the operating system passes common hardening checklists

Again, you want to make sure there are no known security holes that attackers can take advantage of.
Review the procedures used for device administration.

In the latest version of AlgoSec Security Management Suite

we have added a baseline compliance capability that allows you to define and report against corporate-defined configuration baselines for devices – and ultimately minimize risk.

Here’s a short video that examines this capability… Enjoy

The post Simplifying Firewall Audits and Ensuring Continuous Compliance: Part 3 of 6 appeared first on AlgoSec.
.

There is no need for John in sales to access these rooms

In the first two parts of this blog series I focused on Gathering Pertinent Data for a Firewall Audit and Reviewing the Firewall Change Control Process.
In this third installment, I’d like to examine the steps you need to audit your firewalls’ physical and operating systems’ security.
This is important because as there is risk within firewall policies and change control processes that you must get a handle on, there is also potential risk within the firewall configuration itself.
As part of your audit-readiness and goal of being continuously in compliance with internal policies or external regulations and standards, a key step is to make sure your firewalls are hardened against the most fundamental types of attack.
Step 3: Audit Your Firewalls’ Physical and OS Security Make sure you can define and enforce corporate baselines… and report against them so you know where you stand.
By reporting against these baselines that you determine, you will always be “in the know” of your firewalls’ configuration status and how they stack up to the policy.
Some more specific steps to consider are: Ensure your firewalls and management servers are physically secured with controlled access.
Just as your firewalls filter traffic, you need to physically filter accessibility to your firewalls.
Ensure there is a current list of authorized personnel permitted to access the firewall server rooms.
There is no need for John in sales to access these rooms.
Verify that all appropriate vendor patches and updates have been applied.
Financially motivated cybercriminals look for openings to exploit in your security defenses.
Don’t give them any easy target.

Ensure the operating system passes common hardening checklists

Again, you want to make sure there are no known security holes that attackers can take advantage of.
Review the procedures used for device administration.

In the latest version of AlgoSec Security Management Suite

we have added a baseline compliance capability that allows you to define and report against corporate-defined configuration baselines for devices – and ultimately minimize risk.

Here’s a short video that examines this capability… Enjoy

The post Simplifying Firewall Audits and Ensuring Continuous Compliance: Part 3 of 6 appeared first on AlgoSec.
.