Zero Trust Security – The Technical Discussion

November 02, 2010 Added by:PCI Guru

It takes strong leadership to keep security off of the back burner. Without that leadership, security will fall into a rut and an incident will occur. So while I think Zero Trust is probably the approach we should all work towards, it will take a lot of effort to make it a reality...

Comments  (1)


Glorifying the Attackers and Prosecuting the Victims

October 29, 2010 Added by:Danny Lieberman

Translated to the world of security and compliance – we can understand that a basic component of data security in the workplace, is an ethical approach where we maintain a clear identification of who is the malicious attacker and deal with him in an uncompromising and harsh way...

Comments  (0)


Zero Trust Security – The Cultural Discussion

October 28, 2010 Added by:PCI Guru

For what this approach requires is that you tell your employees that they cannot be trusted. If that does not scare the daylights out of you, it will sure scare it out of your human resources executives and probably a few, if not all, of the rest of your senior managers...

Comments  (2)


Security: So You Want to Work Remotely?

October 26, 2010 Added by:Christopher Burgess

You are no longer within the four walls of the employer, and you no longer have that physical security surrounding you and the assets. Your mobile environment by definition is physically outside their ability to monitor for the physical security threats which every office addresses...

Comments  (3)


Why Software Patents Are a Bad Idea

October 26, 2010 Added by:Danny Lieberman

The problem with software patents goes far beyond being an abstract mathematical algorithm or not, since most software is about ways of doing business or implementing consumer electronics, as opposed to innovative computational algorithms...

Comments  (1)


Chinese Hackers, Russian Cyber Crime and American Apathy

October 25, 2010 Added by:Dan Dieterle

Many American businesses and home users don’t focus on securing their systems, or simply don’t care. You have 2 to 15 guys protecting your network; they have the manpower to task 1,000 hackers to penetrating your system if you have something they want. Who is going to win that battle?

Comments  (7)


UK Declares Cybercrime Growing Threat

October 20, 2010 Added by:Simon Heron

It is interesting that the UK Government seems to be taking the threat of cybercrime more seriously now, especially when you consider the spending review currently underway. Let’s hope that action is taken as a result of the strategy and that it is long term and persistent...

Comments  (1)


Should US Apply Cold War Doctrines to Cyber War?

October 18, 2010 Added by:Dan Dieterle

Where many times cyber attacks are more espionage related, they could turn deadly if power, telecommunications or infrastructure is damaged in a large city. Civil security, medical and food supply could be the heaviest hit...

Comments  (3)


UK National Security Strategy Published

October 18, 2010 Added by:Mark Gardner

The UK Government published their National Security Strategy. This placed hostile attacks upon UK cyberspace by other states and large scale cybercrime on the same level as International Terrorism, and International Military threats...

Comments  (0)


Reining In Enterprise Mobile Computing Risks

October 07, 2010 Added by:Rebecca Herold

As demonstrated over and over again over the past several years, mobile computing devices and storage media present a huge risk to business and personal information. It is vital that an effective mobile computing device and storage media security and privacy management program is in place...

Comments  (0)


Consumerization of IT and Enterprise Evolution

October 05, 2010 Added by:Phil Agcaoili

We have a problem with new disruptive technology and we need to treat all endpoint systems as hostile. New consumer technology that's brought into the workplace (a trend known as consumerization of IT), the consumer use of free or low-cost cloud services for the connected online life, and the enterprise shift towards the cloud for vertical business applications are rapidly affecting the way worker...

Comments  (0)


On Security and Motivation

October 04, 2010 Added by:Javvad Malik

There probably aren’t many companies who practice good security just for the sake of security. Security is driven by other objectives such as trying to impress another company so as to win business, because the regulators told them they had to, or because a rival company had just been breached...

Comments  (1)


Are You Using Deprecated Security Guidelines?

September 29, 2010 Added by:Jamie Adams

Whether you adhere strictly to a particular set of industry standards or define your own security policies based on industry standards, you must be able to assess your server OSs on a regular basis and provide proof that they meet security requirements...

Comments  (1)


How Many Information Security Staff Do We Need?

September 26, 2010 Added by:Kurt Aubuchon

The right number of information security staff is highly sensitive to the nature of the business and the regulatory environment, or perhaps because the information security discipline is less mature than IT infrastructure, there just aren’t very many good benchmarks out there...

Comments  (4)


Pentagon Considers Preemptive Strikes as Cyberdefense

September 17, 2010 Added by:Theresa Payton

Safety & privacy - they can coexist but there is a healthy tension. Sometimes we give up privacy to be secure. Sometimes we guard our privacy and knowingly or unknowingly give up some of our security. It's a true conundrum. How much privacy are we willing to give up for that safety?

Comments  (0)


Strategies for Quality in Software Development

September 01, 2010 Added by:Rahul Neel Mani

Dr. Bill Curtis, Director, Consortium for IT Software Quality (CISQ) and the co-author of Capability Maturity Model (CMM), in an email interview with Geetaj Channana, talks about the need for standards in software development...

Comments  (0)

Page « < 33 - 34 - 35 - 36 - 37 > »