EU Cyber Resilience Act: What Enterprise Software Vendors Must Change
The EU Cyber Resilience Act mandates significant shifts in how enterprise software is designed, developed, and maintained, moving beyond a reactive security…
Defense-in-depth for state registries: security beyond the perimeter
Protecting national-scale state registries requires a defense-in-depth strategy that extends beyond traditional perimeter security, focusing on data integrity, granular access control, and…
Threat Modeling for Document Workflow Systems: STRIDE in Practice
Securing enterprise document workflow systems requires a structured approach to identifying vulnerabilities. This article explores applying the STRIDE threat modeling framework to…
Hybrid cloud for government institutions: benefits and limitations
Government institutions face a unique challenge: how to modernize IT infrastructure leveraging cloud technologies without compromising security and sensitive data storage requirements?…
Offboarding failures that compromise company cybersecurity
Improper termination of employment can turn a former employee into a potential threat, undermining a company's cybersecurity. The absence of a clear…
AI phishing: why even cautious employees open malicious emails
Artificial intelligence has radically changed the cybersecurity landscape, making phishing attacks unrecognizable even to experienced users. AI-generated emails now bypass traditional filters…
IT project risk management: Softline methodology and practice
Sometimes, even the most well-thought-out IT project plan can be derailed by unforeseen circumstances. Softline shares its experience and approaches to effective…
Web portals for e-government: from requirements to launch
Creating an effective web portal for government structures requires a clear understanding of goals, regulatory requirements, and architectural solutions. Let's examine the…
DLP in 2026: Data control beyond the corporate perimeter
By 2026, 60% of companies' sensitive data will be stored and processed outside the traditional corporate perimeter. This creates new challenges for…
Offboarding is the weakest link in cybersecurity
Improper offboarding can lead to data breaches, unauthorized access, and other cybersecurity incidents. Let's explore why this process is often overlooked and…