All Blog Posts

Apr 182019

Cybersecurity Best Practices: Patch Management

| Head of the Threat Resistance Unit

In May 2017, the WannaCry ransomware cryptoworm wreaked havoc, infecting more than 200,000 computers in 150 countries and causing hundreds of millions of dollars in damages. The ransomware spread through the EternalBlue exploit, a program designed by the National Security Agency (NSA) to penetrate unpatched Windows-based systems through an SMB vulnerability. By the time WannaCry […]

Troy Dearing

Head of the Threat Resistance Unit

Troy Dearing is the Head of the Threat Resistance Unit and oversees all cyber threat intelligence & threat hunting initiatives. He initially joined Armor’s TRU as a Senior Ethical Hacker leveraging 22 years of expertise in IT and cyber security.

Before joining Armor, Troy was a Computer Network Operator for the NSA, where he was tasked with performing Computer Network Exploitation operations. He retired from the Marine Corps after 20 years of service with distinction serving as a network intelligence subject matter expert, instrumental in the creation of a service level course on network exploitation and analysis. Early in his career he was selected for an internship at the NSA’s Red Team which established his foundation in cyber security expertise. He graduated magna cum laude from the University of Maryland University College attaining his Bachelor of Science in Cybersecurity. Troy is a Certified Information Systems Security Professional (CISSP).

Apr 162019

What Is a Cloud Workload Protection Platform (CWPP)?

| Senior Product Marketing Manager

The security services industry is rife with a lot of vendor classifications right now. You’re likely familiar with some of them, but for others you may be wondering what they are and how they help you address your security and compliance needs or desired outcomes. In this post, we’ll talk about Cloud Workload Protection Platforms, […]

David Lorti Image

David Lorti

Senior Product Marketing Manager

David Lorti is a Senior Product Marketing Manager at Armor. He is responsible for market and competitive analysis, sales enablement and go-to-market for new Armor offerings related to Armor’s Armor Anywhere solution. He has long-standing experience in the cybersecurity and technology industry launching cloud security and managed security, security and risk consulting, threat intelligence and incident response offerings. He graduated with a Masters of International Management from Thunderbird School of Global Management and a Bachelor of Arts from Arizona State University.

Apr 112019

Naked Data: Facebook and the Importance of CSPM

| Senior Product Marketing Manager

A few days ago, UpGuard published another release on the discovery of unsecured data from Facebook users on an Amazon Web Services S3 bucket. We’ve been talking about the problem of misconfigurations in the cloud, and this is another poignant reminder of that. In UpGuard’s release, they cite the discovery of 2 separate exposures. The […]

David Lorti Image

David Lorti

Senior Product Marketing Manager

David Lorti is a Senior Product Marketing Manager at Armor. He is responsible for market and competitive analysis, sales enablement and go-to-market for new Armor offerings related to Armor’s Armor Anywhere solution. He has long-standing experience in the cybersecurity and technology industry launching cloud security and managed security, security and risk consulting, threat intelligence and incident response offerings. He graduated with a Masters of International Management from Thunderbird School of Global Management and a Bachelor of Arts from Arizona State University.

Apr 92019

Cybersecurity Best Practices: Third Party Vendor Partnerships

| Director of Product Marketing

Google. Facebook. Target. What single major characteristic do these 3, seemingly disparate brands have in common? All 3 suffered significant data breaches that were traceable back to a third-party vendor. Don’t be fooled though, they’re not the only ones. In today’s era of increasing cybersecurity risks, third-party vendors are emerging as the new Achilles heel […]

Ryan Smith

Director of Product Marketing

With 10 years of experience, Ryan Smith serves as Director of Product Marketing at Armor; he is passionate about telling stories about how companies are achieving security and compliance in the cloud. Ryan regularly speaks nationwide at conferences, user groups, and special events on the topics of cloud security, compliance – PCI, HIPAA, and GDPR, and developing secure cloud architectures. Previously, he served as a Sr. Product Manager focused on bringing Armor Anywhere (a managed, scalable security solution that protect virtual machine instances hosted on public, private, hybrid or on-premise cloud environments) and its future iterations to market; he also has been an integral part of developing Armor’s compliance matrix mappings and the industry defining cloud adoption framework for HIPAA compliance. At prior companies, he served as the Founder, Head of Product or Marketing Manager for various SaaS businesses. Ryan holds a PhD in Mass Media and Communication Studies from European Graduate School.

Apr 42019

Learnings from Analysis of 11 Major Misconfiguration Incidents

| Senior Product Marketing Manager

As we continue to discuss Cloud Security Posture Management (CSPM) tools as they evolve in the marketplace and within our own portfolio, it’s also necessary to consider why they’re important. With that in mind, let’s take a look at some context on major data breaches making headlines over the past couple of years, including Dow […]

David Lorti Image

David Lorti

Senior Product Marketing Manager

David Lorti is a Senior Product Marketing Manager at Armor. He is responsible for market and competitive analysis, sales enablement and go-to-market for new Armor offerings related to Armor’s Armor Anywhere solution. He has long-standing experience in the cybersecurity and technology industry launching cloud security and managed security, security and risk consulting, threat intelligence and incident response offerings. He graduated with a Masters of International Management from Thunderbird School of Global Management and a Bachelor of Arts from Arizona State University.

Apr 22019

Benefits of Multifactor Authentication

| Director of Product Marketing

With the continued rise of cyberincidents over the past decade, it’s apparent that hacking has become big business for cybercriminals. This has led to significant financial loss for consumers and enterprises that have fallen victim to data breaches. While there’s no silver bullet to data security in today’s increasingly sophisticated threat landscape, it also shouldn’t […]

Ryan Smith

Director of Product Marketing

With 10 years of experience, Ryan Smith serves as Director of Product Marketing at Armor; he is passionate about telling stories about how companies are achieving security and compliance in the cloud. Ryan regularly speaks nationwide at conferences, user groups, and special events on the topics of cloud security, compliance – PCI, HIPAA, and GDPR, and developing secure cloud architectures. Previously, he served as a Sr. Product Manager focused on bringing Armor Anywhere (a managed, scalable security solution that protect virtual machine instances hosted on public, private, hybrid or on-premise cloud environments) and its future iterations to market; he also has been an integral part of developing Armor’s compliance matrix mappings and the industry defining cloud adoption framework for HIPAA compliance. At prior companies, he served as the Founder, Head of Product or Marketing Manager for various SaaS businesses. Ryan holds a PhD in Mass Media and Communication Studies from European Graduate School.

Mar 282019

Protecting Your Virtual Assets from Physical Threats

| Senior Ethical Hacker

Where there’s a will, there’s a way—and, for black hat hackers, there’s always a will and a way to get what they’re after. As a decision maker or IT professional in your organization, you’ve likely set up strong defenses against virtual threats facing your network, such as phishing, social engineering, business email compromise scams, etc. […]

Geoffrey Pamerleau

Senior Ethical Hacker

Geoffrey Pamerleau joined Armor as a senior ethical hacker bringing 10 years of expertise in IT and cyber security to the Threat Resistance Unit (TRU). Before joining Armor, Geoff was a Computer Network Operator for the NSA, where he was tasked with performing computer network exploitation operations. He served in the United States Air Force with distinction as a Cyberspace Operations Officer. Prior to his commission, Geoff received a Bachelor’s in Computer Science with a focus on Cyberwarfare from the United States Air Force Academy. While there, Geoff was a member of the Academy’s Cyber Warfare Club and competed in National and International information security competitions. Geoff has certifications in incident handling and penetration testing from SANS and Offensive Security. (GCIH, GPEN, and OSCP).

Mar 252019

What are CSPM tools?

| Senior Product Marketing Manager

We’ve written about cloud security posture management (CSPM) before, briefly discussing some of the benefits this service can provide. But we’ve watched these services quickly evolve, even over the last few months, and we want to take a further look at the tools that comprise CSPM, the value they add to cloud security and compliance […]

David Lorti Image

David Lorti

Senior Product Marketing Manager

David Lorti is a Senior Product Marketing Manager at Armor. He is responsible for market and competitive analysis, sales enablement and go-to-market for new Armor offerings related to Armor’s Armor Anywhere solution. He has long-standing experience in the cybersecurity and technology industry launching cloud security and managed security, security and risk consulting, threat intelligence and incident response offerings. He graduated with a Masters of International Management from Thunderbird School of Global Management and a Bachelor of Arts from Arizona State University.

Mar 212019

The Ripple Effect of GDPR: Webinar

| Senior Counsel and Director of the Legal Department

In May 2018, the European Union (EU) enacted the General Data Protection Regulation (GDPR), a sweeping overhaul of the EU’s data privacy laws that reshaped the way organizations across the region and globe approach data privacy. In two previous blogs—The Aftershock of GDPR, Part 1 and Tokenization + Security-as-a-Service, Part 2—we provided an overview of […]

Skyla Johnson Image

Skyla Johnson

Senior Counsel and Director of the Legal Department

Skyla R. Johnson is Senior Counsel and Director of the Legal Department at Armor Defense Inc., an international cyber security organization where she serves as lead security and privacy counsel. Skyla has worked extensively in matters involving complex data security and data privacy law issues, including advising companies when responding to security breach incidents. During her career she has also served as in-house counsel for large companies in both the technology and financial services industries. Skyla earned her J.D. from Southern University Law Center, and her B.A. in economics from Howard University. She is admitted to the Texas Bar.

Mar 192019

Best Practices: Asset Management

| Senior Security Architect

Technology is becoming more sophisticated and advancing businesses of all sizes every day. So much so that companies are increasing their IT budgets to keep up with customers, competitors, and industry demands. In fact, according to SpiceWorks’ 2019 State of IT report, 89% of businesses expect IT budgets to grow or remain steady this year. […]

Chris Hinkley, OSCP, CISSP

Senior Security Architect

As senior security architect of Armor, Chris Hinkley utilizes a decade of security expertise to design, test and deploy next generation security processes and techniques for the cloud. His work at Armor was instrumental in Armor being one of the first cloud companies globally to achieve PCI DSS compliance. Prior to Armor, Hinkley worked as a Web Developer for TargetScope, an interactive marketing and Web development company. In that role he created everything from website animations to complex and dynamic product configurations using the latest technology and development frameworks. With Armor, Hinkley has held a number of security and technology-related roles, including security engineer, lead engineer and support manager. In those roles he has serviced thousands of FireHost customer servers, including Windows and Linux, and overseen the security of all hosting environments to meet PCI, HIPAA and other compliance guidelines. Hinkley is a sought after speaker and author on cloud, security and open source topics, publishing regular columns in SecurityWeek and other industry magazines. Hinkley is a Certified Information Systems Security Professional (CISSP).

Mar 142019

Artificial Intelligence & Machine Learning: Securing the Latest Wave of Innovation— Part 2

| Director of Product Marketing

“Anything that could give rise to smarter-than-human intelligence—in the form of artificial intelligence, brain-computer interfaces, or neuroscience-based human intelligence enhancement—wins hands down beyond contest as doing the most to change the world. Nothing else is even in the same league.” –Eliezer Yudkowsky Our last blog, which was the first in this 2-part series covering artificial […]

Ryan Smith

Director of Product Marketing

With 10 years of experience, Ryan Smith serves as Director of Product Marketing at Armor; he is passionate about telling stories about how companies are achieving security and compliance in the cloud. Ryan regularly speaks nationwide at conferences, user groups, and special events on the topics of cloud security, compliance – PCI, HIPAA, and GDPR, and developing secure cloud architectures. Previously, he served as a Sr. Product Manager focused on bringing Armor Anywhere (a managed, scalable security solution that protect virtual machine instances hosted on public, private, hybrid or on-premise cloud environments) and its future iterations to market; he also has been an integral part of developing Armor’s compliance matrix mappings and the industry defining cloud adoption framework for HIPAA compliance. At prior companies, he served as the Founder, Head of Product or Marketing Manager for various SaaS businesses. Ryan holds a PhD in Mass Media and Communication Studies from European Graduate School.

Mar 122019

Artificial Intelligence & Machine Learning: Securing The Latest Wave of Innovation – Part 1

| Director of Product Marketing

Artificial intelligence (AI) and machine learning (ML) are currently hot topics in most industries. These buzzwords generally elicit immediate and emotional responses, which tend to fall in opposing camps. One response is characterized by the eternal hope and optimism that AI and ML will allow the automation of mundane or repetitive tasks, freeing humans to […]

Ryan Smith

Director of Product Marketing

With 10 years of experience, Ryan Smith serves as Director of Product Marketing at Armor; he is passionate about telling stories about how companies are achieving security and compliance in the cloud. Ryan regularly speaks nationwide at conferences, user groups, and special events on the topics of cloud security, compliance – PCI, HIPAA, and GDPR, and developing secure cloud architectures. Previously, he served as a Sr. Product Manager focused on bringing Armor Anywhere (a managed, scalable security solution that protect virtual machine instances hosted on public, private, hybrid or on-premise cloud environments) and its future iterations to market; he also has been an integral part of developing Armor’s compliance matrix mappings and the industry defining cloud adoption framework for HIPAA compliance. At prior companies, he served as the Founder, Head of Product or Marketing Manager for various SaaS businesses. Ryan holds a PhD in Mass Media and Communication Studies from European Graduate School.

Mar 72019

Cybersecurity Best Practice: Storing Necessary Data

| Threat Intelligence Analyst

If a cybercriminal breaks into your network, what will they find? Will they find medical information, credit card data, or other forms of personally identifiable information (PII) that will create a problem for your customers and employees, or do you only keep the data that you truly need? Are there decades worth of collected data, […]

Eric Sifford

Threat Intelligence Analyst

Eric Sifford is a Threat Intelligence Analyst in Armor’s Threat Resistance Unit. Prior to joining the Armor Team, Eric was a senior cyber threat exercise planner with Bank of America where he was a collaborative inventor on two blockchain patents. During approximately 30 years of service in the U.S. Marine Corps and the U.S. Army, he served as an Avionics Technician, a Signals Intelligence Cryptologic Linguist (Arabic), a Human Intelligence Collection Technician, and a Cyber Counterintelligence Collection Technician. Eric graduated at the top of his class from Marine Corps Basic Training and U.S. Army Warrant Officer Candidate School. He graduated Summa Cum Laude with a bachelor’s degree in Intelligence Studies from American Military University and was selected as the President’s Award recipient for his baccalaureate class. Eric is a Certified Information Systems Security Professional (CISSP), an Information Systems Security Engineering Professional (ISSEP), a Professional Certified Investigator (PCI); and he holds the GIAC Cyber Threat Intelligence (GCTI) certification.

Mar 52019

Securing Your Company’s Communication Channels

| Senior Ethical Hacker

You’re likely no stranger to the saying, “if these walls could talk,” and have been thankful a time or two that they can’t. But, what about the virtual walls, or more so, the internal communication channels your employees use daily—can they talk? Unfortunately, with the combination of a persistent threat actor and improper security for […]

Geoffrey Pamerleau

Senior Ethical Hacker

Geoffrey Pamerleau joined Armor as a senior ethical hacker bringing 10 years of expertise in IT and cyber security to the Threat Resistance Unit (TRU). Before joining Armor, Geoff was a Computer Network Operator for the NSA, where he was tasked with performing computer network exploitation operations. He served in the United States Air Force with distinction as a Cyberspace Operations Officer. Prior to his commission, Geoff received a Bachelor’s in Computer Science with a focus on Cyberwarfare from the United States Air Force Academy. While there, Geoff was a member of the Academy’s Cyber Warfare Club and competed in National and International information security competitions. Geoff has certifications in incident handling and penetration testing from SANS and Offensive Security. (GCIH, GPEN, and OSCP).

Feb 282019

Best Practice Series: Response Plans

| Threat Intelligence Analyst

Responding quickly, calmly, and effectively to a security incident isn’t always easy. Emotions run high, and time is of the essence, having a detailed, well-thought-out response plan is so important. Planning your organization’s response, assigning tasks, and making sure everyone on your team is prepared can streamline the process, increase the likelihood of a successful […]

Eric Sifford

Threat Intelligence Analyst

Eric Sifford is a Threat Intelligence Analyst in Armor’s Threat Resistance Unit. Prior to joining the Armor Team, Eric was a senior cyber threat exercise planner with Bank of America where he was a collaborative inventor on two blockchain patents. During approximately 30 years of service in the U.S. Marine Corps and the U.S. Army, he served as an Avionics Technician, a Signals Intelligence Cryptologic Linguist (Arabic), a Human Intelligence Collection Technician, and a Cyber Counterintelligence Collection Technician. Eric graduated at the top of his class from Marine Corps Basic Training and U.S. Army Warrant Officer Candidate School. He graduated Summa Cum Laude with a bachelor’s degree in Intelligence Studies from American Military University and was selected as the President’s Award recipient for his baccalaureate class. Eric is a Certified Information Systems Security Professional (CISSP), an Information Systems Security Engineering Professional (ISSEP), a Professional Certified Investigator (PCI); and he holds the GIAC Cyber Threat Intelligence (GCTI) certification.