Search:

Items Tagged with "Infosec"


7ce032c184c593a533f07004162c53bb

Infosec and the Death of the Rabbi

May 18, 2012 Added by:Carter Schoenberg

What is more valuable, a SCADA security pro that understands a plant with such detail that his knowledge may never be rivaled, or a person who can also understand the organizations mission need and business drivers and can translate security into quantified risk measurements...

Comments  (1)

9f19bdb2d175ba86949c352b0cb85572

Who Are You Preaching to Anyway?

May 16, 2012 Added by:Neira Jones

Hard core security conferences continue to happen and continue to be successful, and long may it continue. We still need the techies to make sure we have the right tech to support the people and processes in our businesses. We also need the techies to try and keep ahead of the bad guys...

Comments  (1)

Bddcc5065237c686cb4d89dba8b276f2

Security BSides Detroit Announces its June Schedule

May 15, 2012 Added by:Steven Fox, CISSP, QSA

The BSides conference is billed as a un-conference where practitioners go for clear unfiltered view of the industry. The conference features two tracks and thirty-two talks of local and national experts on a variety technical and non-technical subjects...

Comments  (0)

Baed7cd90281d85b6943e9bf3cfc9fe0

Infosec is Not a Religion

May 15, 2012 Added by:Scot Terban

Infosec is not a religion. There are no Cardinals, there are no Bishops, there are only a bunch of people who want their opinion to be heard and listened to ad nauseum. It’s as simple as that, and if you start clothing it in the robes of ecclesiastical rhetoric, you FAIL...

Comments  (2)

53692ae1a8e713373b8a487ce89ee3e2

Are We Reaching Security Conference Overload?

May 14, 2012 Added by:Tom Eston

We have more security and hacking conferences than ever, but now there is also more overlap. These choices can make it harder for researchers to present new and relevant content and also tough to decide which conferences to attend from a attendee perspective...

Comments  (0)

54a9b7b662bfb0f0445d1661d7ed180b

Taming the WWW or Wild Wild West

May 14, 2012 Added by:Jayson Wylie

There is a reason the security world refers to exploitation on the Internet to activity ‘in the wild’. A comparison can be made to the lawless, tough and unforgiving world of the Wild West in American history. You can get your stuffz or scalp taken...

Comments  (0)

99edc1997453f90eb5ac1430fd9a7c61

BSides London and Infosec Europe 2012

May 11, 2012

So I guess the one thing you can take away from it all is that if you want to speak to CISO’s and heads of security or other high-flying execs, the easiest way to do so is get yourself a camera, a microphone and a press pass to an event and they will be like putty in your hands...

Comments  (0)

B9d9352326e5421a02e698a51d10ad2c

What Infosec Can Learn from Enron

May 09, 2012 Added by:Beau Woods

Auditors aren't the sole authoritative voice, and they can be fooled or coerced like anyone else. Too often internal and external auditors are trusted as the arbiters of right and wrong. This can fail an organization if executives don't understand the role auditors should play...

Comments  (0)

Ad5130e786d13531cc0f2cde32dacd0f

Aren’t all Security Professionals Evangelists?

May 09, 2012 Added by:Andrew Weidenhamer

I often wonder is Evangelist the right title for some individuals. Considering that the main audience for a “Security Evangelist” is the security community, I’m not entirely sure how much conversion is actually happening as we all understand the importance of security...

Comments  (2)

B35ca22fce3b7eb394e8f5f0094f495f

Understanding Trust

May 07, 2012 Added by:Kevin W. Wall

In computer security, we should strive to make all trust relationships explicit and leave nothing to chance or misinterpretation. That's one key step in defining a trust model. At its core, information security is largely about the two goals of “ensuring trust” and “managing risk”...

Comments  (0)

E313765e3bec84b2852c1c758f7244b6

Information Security is More than Prevention

May 04, 2012 Added by:Brent Huston

One of the biggest signs that an organization’s infosec program is immature is they have an obsessive focus on prevention and equate it with security through knee-jerk reactions to vulnerabilities, never-ending emergency patching situations and a continual fire-fighting mode...

Comments  (0)

Baed7cd90281d85b6943e9bf3cfc9fe0

Fear and Loathing in Infosec: The Black Mass

May 02, 2012 Added by:Scot Terban

Gesticulating and making odd sounds, the hackers milled and jerked around like some strange species of black raptors. Babbling incoherently about arcane knowledge in the hopes of one upping the other hapless technoweens in the room....

Comments  (0)

68b48711426f3b082ab24e5746a66b36

Guide to the OWASP Application Security Top Ten

May 01, 2012 Added by:Fergal Glynn

Operating as a community of like-minded professionals, OWASP issues software tools and knowledge-based documentation on application security. All of its articles, methodologies and technologies are made available free of charge to the public...

Comments  (0)

6648b1abd4a9b964566c3690613f20a6

OpenX CSRF Vulnerability Being Actively Exploited

May 01, 2012 Added by:Mark Baldwin

This vulnerability from July 2011 is still present in the latest version of OpenX Source (version 2.8.8). Moreover, this vulnerability is being actively exploited to compromise OpenX Source installations in order to serve malicious content via banner ads...

Comments  (2)

7fef78c47060974e0b8392e305f0daf0

ENISA: Cyber Exercise Stocktaking Survey

April 30, 2012 Added by:Infosec Island Admin

As cyber crises occur on larger scales, managing them effectively requires international cooperation. ENISA would like to take stock of national and international cyber exercise efforts worldwide. The result of this project will be a global map of cyber exercises...

Comments  (0)

99edc1997453f90eb5ac1430fd9a7c61

Experts Talk Security Awareness: Black Hat EU 2012 Finale

April 30, 2012

At Black Hat Europe 2012, we asked the experts for their views on the importance of user security awareness training and what the common issues are with such initiatives. Javvad's coverage of Black Hat Europe courtesy of Infosec Island and NETpeas...

Comments  (0)

Page « < 1 - 2 - 3 - 4 - 5 > »
Popular Topics
Anonymous  Application Security  Attacks  Authentication  Cloud Computing  Cloud Security  Compliance  Cyber Crime  Cyber Security  Cyberwar  Data Loss  Data Loss Prevention  Encryption  Enterprise Security  Government  Hacktivist  Headlines  Industrial Control Systems  Information Security  Infosec  Infrastructure  Legal  Managed Services  Military  National Security  Network Security  PCI DSS  Passwords  Privacy  Risk Management  SCADA  Security  Security Awareness  Training  Vulnerabilities  breach  breaches  hackers  internet  malware 

Your Own Private Island

December 24, 2011
Coming Soon! Build your own Island right here!

Make your home Infosec Island with your own private vanity URL, design options and private network of followers.

Infosec Island v2

December 24, 2011
The latest version of Infosec Island is now available. There are more content options and more ways to connect and interact with your peers.

Thanks to everyone for a great year, and we're looking forward to an excellent 2012!
Latest Survey Results
2011 will be most likely be remembered for:
results