Tech Tips from the Castle


Habeus Data - A Review

August 14, 2018

Habeus Data , by Cyrus Farivar, is written at a critical time in our history. The ability of organizations, both governmental and commercial, to observe and collect vast amounts of information about our behavior is growing by leaps and bounds. In my opinion we are probably at the early stages of...

Continue Reading...


The regulation known as 23 NYCRR 500 is a set of cybersecurity requirements from the New York Department of Financial Services (NYDFS) for financial and insurance institutions that conduct business within the State. The regulation began March 1, 2017 with implementation deadlines occurring at variou...

Continue Reading...


In the ArcSight SIEM, the ESM, all content should start with a Filter. When making content such as an Active Channel, Query or Rule always reference Filters in the Conditions and Filter tabs. Even a Filter should start with a Filter, when possible.

This important principal makes ArcSight content m...

Continue Reading...


Kanye West is certainly all over the news these days. With today being World Password Day, it got me thinking how he could play a role in cybersecurity. And that contribution? Passwords. Confused? Let me explain.

A problem with passwords is that we have waaay too many to remember. Secondly,...

Continue Reading...


Keeping the Wolves at Bay

April 17, 2018

The old biblical adage to “beware of the wolf in sheep’s clothing” in many cases applies to system administrators. Unfortunately, their mission sometimes conflicts with the security department. They must provide computing resources to users and they want to do it as quickly as possible. Business...

Continue Reading...