Items Tagged with "Managed Services"
Cloud Adoption Tension: IT vs Business
April 19, 2012 Added by:Ben Kepes
On the side of IT it’s all about security, control and transparency. On the side of the business, it’s years of frustration at slow and cumbersome IT procurement processes – they want to get stuff done. It’s fair to say that we’re still in the Wild West of cloud adoption...
Comments (0)
The Security Poverty Line and Junk Food
April 16, 2012 Added by:Wendy Nather
Organizations below the security poverty line tend to be inordinately dependent on third parties and have less direct control over the security of the systems they use. They end up ceding risk decisions to third parties that they ideally should be making themselves...
Comments (2)
Zeus Trojan Takes Aim at Cloud Payroll Services
April 12, 2012 Added by:Headlines
"Zeus captures a screenshot of a Ceridian payroll services web page when a corporate user whose machine is infected... visits this website. This allows Zeus to steal the user id, password, company number and the icon selected by the user for the image-based authentication system..."
Comments (0)
ENISA: Guidelines for Monitoring Cloud Computing Contracts
April 05, 2012
Cloud computing services are increasingly important for governments and businesses, and information security is a key pain-point. To help solve this problem ENISA released a guide focusing on continuous security monitoring throughout the life-cycle of a cloud contract...
Comments (0)
Cloud Security: Forecast Sunny with Possibility of Showers
April 04, 2012 Added by:Fergal Glynn
Even as companies are adapting to this new paradigm, there are growing concerns about the safety of their data in the cloud. Incidents at cloud service providers like Dropbox highlight dangers of storing information in the cloud...
Comments (0)
Cloud Services Strategy: Security First - Growth Second
March 30, 2012 Added by:Richard Stiennon
Cisco, Juniper, Oracle, and Microsoft might have security initiatives and even good sales of security products. But security takes a back seat to functionality too often. Why are there no secure switches? Secure apps for Windows? Or secure databases?
Comments (0)
Cloud Security and the Enterprise
March 29, 2012 Added by:Ben Kepes
We need to ensure that legislation and regulations for cloud services truly reflect the realities of the cloudy world we live in and do not allow for a shotgun approach to compliance that primarily meets the needs of just one powerful interest group...
Comments (0)
New Release of COREvidence Multi-Engine Vulnerability Service at RSA Conference
March 29, 2012 Added by:Nabil Ouchn
This newest release comes with a bunch of new features and concepts. The dashboard has been designated to display clear and specific data for our users. At a glance customers can determine the assets with the least secure status. All relevant information is at your fingertips...
Comments (0)
ENISA: Study on Data Collection and Storage
March 27, 2012
Given the contrast between the importance of the privacy by design principle and the reality of lax data protection practices with many service providers, the aim of this study is to present an analysis of the relevant legal framework on the principles of minimal disclosure...
Comments (0)
Data Back-Up Strategies for Your Business
March 25, 2012 Added by:Robert Siciliano
Do you backup data? One of the problems with getting a small businesses to secure data is they think they need to load up thumbdrives, DVDs or tape devices manually. This is in fact tedious and overwhelming. I’ve got news for you, data backup is easy...
Comments (0)
Transborder Data Flows at Risk
March 22, 2012 Added by:David Navetta
The proliferation of comprehensive data privacy laws, more or less on the European model, increasingly requires US-based multinationals and online companies to adapt to strict requirements for dealing with individuals in other countries...
Comments (0)
Reaching for the Cloud: A Contemporary Infosec Perspective
March 21, 2012 Added by:Hani Banayoti
We need to entrust information security to professionals who not only know the fundamental principles and technologies, but are also able to understand and support the business's goals in order to influence and contribute positively to the ongoing infosec challenge...
Comments (0)
On Security, Legislation and Cloud Vendors
March 16, 2012 Added by:Ben Kepes
Ever since the MegaUpload case, when innocent customers of an admittedly generally dodgy cloud service lost their data after a global take-down notice, it has concerned me that more mainstream vendors might have an impending issue they need to think about...
Comments (0)
Going Back to the Stack
March 15, 2012 Added by:Wendy Nather
If you have parts of your infrastructure outsourced, go over your contracts with your providers. You want them to be able to give you logs within a few minutes of the request and have the right technical support without fighting your way through first-level script-readers...
Comments (0)
Understanding Cloud Security Part Two
March 14, 2012 Added by:Neira Jones
Organisations need to ask cloud providers to disclose security controls and how they are implemented, and consuming organisations need to know which controls are needed to maintain the security of their information. Lack of thoroughness can lead to detrimental outcomes...
Comments (0)
The Patchwork Cloud - What's the Deal with Cloud Security?
March 14, 2012 Added by:Rafal Los
Since everything I've been reading from the press, my colleagues, and analysts I know has been telling me security is ranked high in the top five concerns for cloud computing adoption - an article on ARN by Spandas Lui was like a bucket of ice water to the face...