Enterprise Security


How to Use Risk Assessment to Secure Your Own Home

April 27, 2015 Added by:Brent Huston

Risk assessment and treatment is something we all do, consciously or unconsciously, every day.

Comments  (0)


Four Steps to An Effective Privacy Program

April 27, 2015 Added by:Angela Matney

Privacy is not just a concern for large, multinational corporations. Today, businesses of all sizes collect and store more personal data than ever before.

Comments  (0)


The Changing Role of the CISO

April 21, 2015 Added by:Peter Zavlaris

The number of security breaches that have occurred over the last year and a half is unprecedented and has demonstrated a requirement for stronger security. The improvements needed to be made from within will stem from the CISO’s desk. This represents a shift that will require enterprises to re-examine the role of the CISO.

Comments  (0)


Three Things That Need Spring Cleaning in InfoSec

April 19, 2015 Added by:Brent Huston

Spring is here in the US, and that brings with it the need to do some spring cleaning. So, here are some ideas of some things I would like to see the infosec community clean out with the fresh spring air!

Comments  (0)


Healthcare Industry Challenged by Data Breaches, Compliance

April 15, 2015 Added by:Brian Prince

In a new report from Vormetric focused on healthcare organizations, almost half (48 percent) of the IT decision makers from the U.S. said their organization either failed a compliance audit or experienced a data breach in the last year.

Comments  (0)


FFIEC Issues Guidance on Destructive Malware Attacks

April 14, 2015 Added by:Anthony M. Freed

The Federal Financial Institutions Examination Council (FFIEC) released two documents with guidance for financial institutions on mitigating risks from the increase in cyber attacks that compromise user credentials or employ destructive software.

Comments  (0)


The CISO Role in Cybersecurity: Solo or Team Sport?

April 14, 2015 Added by:Kevin L. Jackson

The best skill set for preparing someone to become a CISO is a statistical tie between business knowledge and knowledge of IT security best practices.

Comments  (0)


10 Steps to Improve Your Layered Defense Strategy

April 13, 2015 Added by:Tripwire Inc

We have a problem in the security community – or maybe within the modern information age of humanity in general. That problem is we see security as a technology, policy, privacy or people issue, instead of an integrated combination thereof.

Comments  (0)


IT Security? “Yes Please,” says Uncle Sam – But Offers No Tangible Help

April 13, 2015 Added by:Patrick Oliver Graf

When it comes to IT security, government agencies around the world are aware of the challenges and risks small and medium-sized enterprises (SMEs) face. So it only figures that they offer help, in the form of initiatives aimed specifically at SMEs.

Comments  (0)


FireEye Reveals APT30: A Decade-Long Cyber Espionage Campaign Targeting South East Asia

April 12, 2015 Added by:Mike Lennon

FireEye on Sunday uncovered details of a decade-long cyber espionage campaign carried out by China targeting governments, journalists and businesses in South East Asia and India.

Comments  (0)


Cybersecurity Trends for SMBs: Mobile, Security and the Cloud

April 10, 2015 Added by:Paul Lipman

While SMBs are vulnerable to many of the same types of attacks as the companies making headlines (Target, JP Morgan, Home Depot, Anthem, etc.), they must defend themselves with vastly smaller IT teams and budgets. SMBs are finding they have a unique set of challenges and vulnerabilities that require a comprehensive but tailored approach to security.

Comments  (0)


Is Offensive Security the Future?

April 08, 2015 Added by:Tripwire Inc

If we are still of the opinion that standardized security, policies and other soft mechanisms will accommodate the robust levels of security we are seeking – sorry to report, but they will not.

Comments  (0)


Tomorrow’s Forecast: Increasing Clouds. Extending Your Secure Identity Environment into the Cloud

April 07, 2015 Added by:Identropy

As more company business units explore and adopt Software as a Service (SaaS) solutions for their technology needs, IT security groups struggle to keep the “gathering clouds” from raining on their secured environment. On the bright side, these organizations have a very strong security foundation in place for internally hosted applications.

Comments  (0)


One-in-Six Advocate Prison for CEOs and Board Members After Breaches

April 06, 2015 Added by:Anthony M. Freed

In a recent survey of security professionals conducted at the e-Crime Congress, 16% of respondents said they support laws that would result prison sentences for executives and Boards of Directors for any negligence on their part following a major data breach.

Comments  (0)


Cybercrime Is Now More Profitable Than The Drug Trade

April 06, 2015 Added by:Tripwire Inc

As reported by the 2013 Europol Serious & Organized Threat Assessment, the “Total Global Impact of CyberCrime [has risen to] US $3 Trillion, making it more profitable than the global trade in marijuana, cocaine and heroin combined.”

Comments  (0)


PCI Issues Penetration Testing Information Supplement

April 06, 2015 Added by:PCI Guru

Not surprisingly, I have a number of comments based on what I have read. There are some good things that have come out of this effort. But in my opinion, the committee missed the boat in a few areas and those will lead to even more confusion between penetration testers, QSAs and clients.

Comments  (0)

Page « < 3 - 4 - 5 - 6 - 7 > »