Steve Caimi

Executive Order 14028 directs NIST to define critical software and key security measures. Get NIST’s latest guidance and how Cisco can help.

We forgive you if you didn’t notice Implementation Groups as part of the CIS Controls before, but you should definitely know about them now.

This blog covers cyber supply chain risks, including the software and island hopping attacks. Register for the Supply Chain Summit on May 26.

This blog supports our ATT&CK thought leadership material by focusing on our application and workload security story, including how we at Cisco protect our own software.

It's easy to overlook essential suppliers, partners, and service providers as possible pathways for cyberattacks. But the shocking cyberattack discovered in December shined a bright light on supply chain vulnerabilities, showing how trust can be exploited.

How magical can user training be? You'll be surprised at what Cisco and MITRE ATT&CK make possible. Shared responsibility is what really matters.

In our first blog, we introduced the Magic of Mitigations. They’re the key to getting started with MITRE ATT&CK. Now let’s look at some of the most magical ones, starting today with Behavior Prevention on Endpoint (M1040), Exploit Protection (M1050) and Execution Prevention (M1038). Wait, what’s the difference? At a quick glance, they might all […]

When learning new things, sometimes we need to slow down and take it all in. For me, understanding MITRE ATT&CK was like that. Sure, the notion of thinking like an attacker made sense, and its structure was clear. Then came the “now what?” moment. Soon I discovered the key to getting started. May I share it with you?

Trust in election results begins with faith in our election systems   US mail in the spotlight  Absentee ballots, also called voting by mail, is a hot topic. The pandemic is forcing everyone to re-think what they’ll do this year. Many states expanded mail-in voting and, according to the Washington Post, up to 77% of Americans can now vote by mail. The […]