Home
Tom Olzak

Tom Olzak

Cybersecurity Researcher, Author & Educator

Independent security researcher and an IT professional since 1983, with experience in programming, network engineering, and security. I have an MBA as well as CISSP certification. I am also an online instructor for the University of Phoenix. I've held positions as an IS director, director of infrastructure engineering, director of information security, and programming manager at a variety of manufacturing, healthcare, and distribution companies. Before joining the private sector, I served 10 years in the United States Army Military Police with four years as a military police investigator. I've written four books, Just Enough Security, Microsoft Virtualization, Enterprise Security: A Practitioner's Guide, and Incident Management and Response Guide. I am also the author of various papers and articles on security management.
Stories by Tom Olzak
Endpoint detection and response is more important than ever due to remote work
Endpoint Security
Secure Your Endpoints with Extended and Managed Detection and Response
Tom Olzak
The proliferation of endpoint devices, coupled with the scale of remote work, has complicated endpoint security. Organizations can streamline endpoint...
illustration of a DDoS attack
Cyber Risk Management
How CLDAP Reflectors Enable DDoS Attacks & Ways to Reduce Your Exposure
Tom Olzak
CLDAP is often exposed to the internet without its administrators' knowledge, enabling hackers to exploit its amplification factor to launch...
network attached storage NAS with a single bay
Vulnerability Management
How to Defend Against Deadbolt Ransomware Attacks On NAS Devices
Tom Olzak
The Deadbolt ransomware was used by hackers to exploit vulnerabilities in NAS devices and hold organizations to ransom. Here’s how...
Why Kubernetes is the best bet to migrate cloud apps to the edge
Vulnerability Management
How Vulnerabilities in Kubernetes Are Potential Attack Vectors
Tom Olzak
Attackers scour the internet for flaws in Kubernetes and its exposed components that they may target, thus, making it simple...
common iam pitfalls
Identity & Access Management
Ten Common IAM Deployment Challenges and Their Solutions
Tom Olzak
Throughout the life cycle of an IAM system, many issues emerge that must be addressed quickly and diligently. Below is...
how to track risk and perform risk assessments
Cyber Risk Management
NISTIR 8286A Risk Management Guidance Part 3: Tracking Risk and Performing Risk Assessments
Tom Olzak
In parts 1 and 2 in this three-part series, I described the first steps in setting up and managing system...
1 2 3 5
Popular Articles