Blog Posts Tagged with "Budgets"
The Absurdity of Cloud Computing and Hosted Services
May 13, 2012 Added by:Dan Dieterle
Many companies are turning to online services to help cut costs and restore some level of IT support to their organizations. But what truly makes you think that these online services are not going through the same internal cutbacks and employee changes to cut costs of their own?
Comments (7)
Legislation Would Stick Business with Cyberwar Costs
May 08, 2012 Added by:Headlines
"The legally mandated role of the government is to provide for the common defense, and they're willing to spend pretty much whatever it takes... If you're in a private organization, your legally mandated responsibility is to maximize shareholder value. You can't spend just anything..."
Comments (2)
The Security Poverty Line and Junk Food
April 17, 2012 Added by:Wendy Nather
Organizations below the security poverty line tend to be inordinately dependent on third parties and have less direct control over the security of the systems they use. They end up ceding risk decisions to third parties that they ideally should be making themselves...
Comments (2)
The Infosec Investment Equation - Can You Solve It?
April 10, 2012 Added by:Neira Jones
Redundant measures always expose themselves very rapidly: they either don’t help you run your shop, or nobody around you is interested in them. So if you still have some of these, your job is to scrap them because it will save some time and resources to apply elsewhere...
Comments (0)
From Obstacle to Ally - Repositioning the Security Team
March 31, 2012 Added by:Steven Fox, CISSP, QSA
Rarely are non-security staff engaged in risk control discussions – a lack of interaction that disenfranchises those who will interact with the controls. This engenders a sense of powerlessness that leads to passive sabotage of initiatives intended to further the business...
Comments (0)
CIOs See Growth in IT Budgets and Staff for 2012
March 28, 2012 Added by:Bill Gerneglia
After several years of stagnant or negative growth, most companies are now projecting a 3-4 percent increase in IT budgets and staffing for this year, which can be seen as acknowledgement that IT is critical if companies are to execute on their aggressive growth plans...
Comments (0)
Howard Schmidt on Federal Cyber Security Priorities
March 27, 2012 Added by:Headlines
"Federal Departments and Agencies must defend their information systems in a resource-constrained environment, balancing system security and survivability while meeting numerous operational requirements requires robust risk management," said Schmidt...
Comments (0)
Changing of the Guard: A Perspective on the Changing CISO Role
March 20, 2012 Added by:Rafal Los
Security means different things to different people - but by and large we can agree on the need to defend our organizations against those bad guys who wish to do it harm whether it's from a purely destructive perspective or something more sinister...
Comments (0)
Malware Development Exceeding IT Security Capabilities
March 16, 2012 Added by:Headlines
"Organizations that do plan to beef up their security capabilities will have a difficult time this year. Just under half believe it will be harder this year than in the past to find malware analysts and a similar number state they will have less time to train analysts this year..."
Comments (0)
Smart Grid Network Security Spending to Reach $14 Billion
March 12, 2012 Added by:Headlines
"Utilities have – as many predicted – realized that their grids are no longer isolated or protected from attackers. Smart grids need intelligence or they are not smart. Adding that intelligence to grids will increase their attack surface and utilities know this..."
Comments (0)
DHS's Mark Weatherford on the Cybersecurity Act of 2012
February 23, 2012 Added by:Headlines
"The proposed legislation would enable DHS to be more effective and efficient in its protection of federal networks by clarifying DHS’ authorities in this space and enabling better sharing of cybersecurity information from other federal agencies to DHS..."
Comments (0)
Application Software and Security: A Tale of Two Market Sizes
February 20, 2012 Added by:Fergal Glynn
We spend 0.3% of what we pay for software on ensuring that it is secure. Now you can argue that manual testing is not included. However, even when you account for this variance, the gap in what we spend to buy software and what we spend to secure it is huge...
Comments (0)
Straight Talk about Compliance from a Security Viewpoint
February 10, 2012 Added by:Rafal Los
Odds are, you can usually close out multiple compliance requirements across multiple requirements regulations by doing something singular in a security program. Performing software security audits during various phases of your SDLC solves many compliance requirements...
Comments (0)
Tips for Organizations Heading to the Cloud
February 09, 2012 Added by:Ben Kepes
Identify the data that is touched by each IT process. Is there any data that has to stay in-house for security or compliance reasons? You may need to change IT processes so the sensitive data is not affected by the transition...
Comments (0)
Penny Wise, Pound Foolish: Avoiding Security Spend Pitfalls
February 07, 2012 Added by:Fergal Glynn
Knowing how much money you’re going to spend upfront is a challenge until you have the application inventory, until you know what your risk tolerances are, and until you have a fair idea of what the problems are. You’ll have to start slow and realize the number may grow...
Comments (0)
Data Loss Prevention Step 6: Encrypting Data at Rest
February 07, 2012 Added by:Rafal Los
Even if you did know where all your critical information is, you'd probably be powerless to control its sprawl. Let's face it, systems consume data and then become mobile - which is hardly something you can do anything about in a world where mobility is a key business driver...
Comments (2)
- Not Totally Sure What Just Happened...
- Has Anonymous Infiltrated the US Government?
- Big Opportunities in the Cloud
- Zeus Malware Targeting Facebook, Gmail and Yahoo Users
- Follow Up to the Out of Band Authentication Post
- Skype Malware Campaign Spreading Poison Ivy Trojan
- I Hope Edo is Worth the Privacy Risk
- Dutch MoD Innovation Competition 2012: CYBER Operations 2.0
- NIST Workshop: The Technical Aspects of Botnets
- Security Automation by Hand - Batch/Bash/FOR