Andrew Useckas | CTO

Andrew Useckas | CTO
Andrew has a varied career ranging from ethical hacking, penetration testing and security product development for the US Department of Defense, senior consulting positions for fortune 500 enterprises, and corporate CISO responsibilities for large enterprises. Andrew has an exceptional blend of software development skills combined with extensive knowledge and experience of the network and security industries.
Find me on:

Recent Posts

3 Hurdles Security Will Need to Clear to Succeed in a DevOps World

Posted by Andrew Useckas | CTO on Nov 27, 2018 7:48:09 AM

Historically, there has been no love lost between software developers and security teams. Dev teams are frustrated by the restrictive nature of the security standards placed on them as they often hinder rapid application development. On the flip side, security teams see developers as one of the top threats to the integrity and success of their security strategy.

Read More

Topics: Web, Application & Hybrid Cloud Security

Using & Protecting Microservices - A Double-Edged Sword

Posted by Andrew Useckas | CTO on Jun 21, 2018 6:20:00 AM

Microservices and containers are a hot topic right now - and for various reasons. They are making the news because of their ease of use, but also for the challenges associated with protecting them. We'll start with the positives...In the realm of organizational growth and flexibility, microservices have various advantages. One such advantage is their ability to enable continuous refactoring of small parts of an application, which prevents developers from dealing with large product releases that tend to be more prone to bugs, backward compatibility issues, etc. Other key advantages of microservices include: 

  • Independent scaling. Scaling can be limited to the parts of the application that require more resources

  • Services can be implemented using different technology stacks

  • More fine-grained testing of individual components

  • Makes workflow failures easy to handle and recover from

  • Easier to distribute development tasks across different developers or teams

Read More

Topics: Web, Application & Hybrid Cloud Security

Binary Decisions vs Active Interrogation - The Debate for WAF Providers

Posted by Andrew Useckas | CTO on May 17, 2018 8:20:00 AM

Overview

A Web Application Firewall (WAF) can be a very effective security control to protect your Internet-facing applications from botnets, targeted attacks, and general “Internet noise” generated by attempted exploitations. But is concentrating solely on actual attack vectors instead of the attacker the right way to address the problem?

Sure, most WAF solutions will be able to detect an obvious SQL injection or XSS attempt, but can they combat a barrage of WAF bypass techniques, such as multi-level URL encoding? What about other obscure request encodings that only specific web server technologies will understand and parse?

Read More

Topics: Web, Application & Hybrid Cloud Security

New from ThreatX - Enhanced Edge Caching, DDoS Mitigation & Bot Detection

Posted by Andrew Useckas | CTO on May 2, 2018 10:15:00 AM

Based on analysis of existing data, feedback from customers, and thought leadership insights, ThreatX is rolling out updates to offer advanced Edge Caching, DDoS Mitigation and Botnet Detection. 

Read More

Topics: Company | Product Updates

You're Only as Strong as the Weakest Link in Your Web App Fence

Posted by Andrew Useckas | CTO on Apr 24, 2018 10:00:00 AM

As a leading provider of SaaS-based WAF solutions, we often encounter organizations who prioritize their applications and only secure the "top" web applications. There's a critical flaw in this approach and it's leaving organizations exposed. 

Read More

Topics: Web, Application & Hybrid Cloud Security

Threat X Labs - Blog

Arm yourself with information and insights on the latest cybersecurity trends to defend against today's most advanced cyber criminals with articles from the leader in SaaS-based web application firewall solutions.

Subscribe Here!

Recent Posts

Follow Me