http://www.csoonline.com/ en_us (c) Copyright 2009 CXO Media, Inc. All Rights Reserved. Sat, 21 Nov 2009 12:57:35 GMT 2009-11-21T12:57:35Z en_us (c) Copyright 2009 CXO Media, Inc. All Rights Reserved. http://www.csoonline.com/article/508039/The_Mass._201_CMR_17_Survival_Guide?source=rss_compliance As companies scramble to meet the requirements of the Bay State's data security law, CSOonline.com offers this collection of articles and podcasts to help IT security practitioners and compliance officers find the best approach. Wed, 18 Nov 2009 05:00:00 GMT Bill Brenner http://www.csoonline.com/article/508039/The_Mass._201_CMR_17_Survival_Guide?source=rss_compliance 2009-11-18T05:00:00Z http://www.csoonline.com/article/507364/PCI_DSS_No_Angel_But_Certainly_Not_the_Devil?source=rss_compliance Security luminaries Anton Chuvakin and Ben Rothke explain why 451 Group analyst Josh Corman is off base when he compares PCI security to a devil and "No Child Left Behind." Wed, 11 Nov 2009 05:00:00 GMT http://www.csoonline.com/article/507364/PCI_DSS_No_Angel_But_Certainly_Not_the_Devil?source=rss_compliance 2009-11-11T05:00:00Z http://www.csoonline.com/article/507328/Federal_Data_Security_Law_Careful_What_You_Wish_For_?source=rss_compliance A cybersecurity bill advanced further up the U.S. Senate gauntlet last week, and some IT security practitioners aren't happy about it. Wed, 11 Nov 2009 05:00:00 GMT Bill Brenner http://www.csoonline.com/article/507328/Federal_Data_Security_Law_Careful_What_You_Wish_For_?source=rss_compliance 2009-11-11T05:00:00Z http://www.csoonline.com/article/506635/Analyst_PCI_Security_a_Devil_Like_No_Child_Left_Behind_?source=rss_compliance Joshua Corman, research director for enterprise security at The 451 Group, says the private sector's obsession with PCI DSS compliance is blinding it to larger threats. Wed, 04 Nov 2009 05:00:00 GMT Bill Brenner http://www.csoonline.com/article/506635/Analyst_PCI_Security_a_Devil_Like_No_Child_Left_Behind_?source=rss_compliance 2009-11-04T05:00:00Z http://www.csoonline.com/article/506459/Delayed_Again_Red_Flags_Rule_Deadline_Now_June_1_2010?source=rss_compliance Bowing to Congressional pressure, the FTC is delaying enforcement of the Red Flags Rule until June 1, 2010, for financial institutions and creditors. Here, IT security pros weigh in on what the rule means for them. Mon, 02 Nov 2009 05:00:00 GMT Bill Brenner http://www.csoonline.com/article/506459/Delayed_Again_Red_Flags_Rule_Deadline_Now_June_1_2010?source=rss_compliance 2009-11-02T05:00:00Z http://www.csoonline.com/article/505872/IT_Security_Outsourcing_in_Decline_Companies_Do_More_In_house?source=rss_compliance Seventh Annual Global Information Security Survey: Companies that once outsourced many IT security controls have opted to do more in-house. A look at what caused the shift. (Third in a four-part series) Wed, 28 Oct 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/505872/IT_Security_Outsourcing_in_Decline_Companies_Do_More_In_house?source=rss_compliance 2009-10-28T04:00:00Z http://www.csoonline.com/article/505863/Companies_Seek_Social_Networking_s_promise_Find_Peril_Instead?source=rss_compliance Seventh Annual Global Information Security Survey: Social networking sites such as Twitter, Facebook and LinkedIn enhance collaboration but also make it easier than ever for your employees to share customer data and company secrets with outsiders (First of a four-part series). Mon, 26 Oct 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/505863/Companies_Seek_Social_Networking_s_promise_Find_Peril_Instead?source=rss_compliance 2009-10-26T04:00:00Z http://www.csoonline.com/article/505574/Making_Sense_of_Rapid7_s_Metasploit_Acquisition?source=rss_compliance The information security community stands to benefit from Rapid7's acquisition of Metasploit, IT security experts say. But much depends on how Rapid7 handles its new property. Wed, 21 Oct 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/505574/Making_Sense_of_Rapid7_s_Metasploit_Acquisition?source=rss_compliance 2009-10-21T04:00:00Z http://www.csoonline.com/article/504314/The_Seven_Deadly_Sins_of_Security_Policy?source=rss_compliance Are your security policies really managing your organization's risks? Or are they just 'check-the-box' rules? We detail common policy mistakes security pros often make. Tue, 06 Oct 2009 04:00:00 GMT Joan Goodchild http://www.csoonline.com/article/504314/The_Seven_Deadly_Sins_of_Security_Policy?source=rss_compliance 2009-10-06T04:00:00Z http://www.csoonline.com/article/502914/7_Ways_Security_Pros_DON_T_Practice_What_They_Preach?source=rss_compliance IT security pros spend oodles of time trying to hammer best practices into the heads of fellow employees. But in an informal poll conducted by CSOonline, many admitted they don't always follow their own advice. Tue, 22 Sep 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/502914/7_Ways_Security_Pros_DON_T_Practice_What_They_Preach?source=rss_compliance 2009-09-22T04:00:00Z http://www.csoonline.com/article/499439/Data_Mapping_How_to_Make_It_Work?source=rss_compliance A data map can make e-discovery and regulatory compliance a lot simpler, but the difficulties of getting there are well-known. Bruce Phillips offers tips from Fidelity National Financial's data mapping project. Tue, 11 Aug 2009 04:00:00 GMT Joan Goodchild http://www.csoonline.com/article/499439/Data_Mapping_How_to_Make_It_Work?source=rss_compliance 2009-08-11T04:00:00Z http://www.csoonline.com/article/496288/Report_Business_Risk_of_Fraud_Corruption_Up_Amid_Economic_Crisis?source=rss_compliance Control Risks' report suggests businesses heighten efforts to guard against fraud and comply with stringent regulations. Tue, 30 Jun 2009 04:00:00 GMT Joan Goodchild http://www.csoonline.com/article/496288/Report_Business_Risk_of_Fraud_Corruption_Up_Amid_Economic_Crisis?source=rss_compliance 2009-06-30T04:00:00Z http://www.csoonline.com/article/493565/Cybersecurity_Crossroads_Will_White_House_Czar_Choose_the_Right_Path_?source=rss_compliance President Obama is set to name a new cybersecurity czar with unprecedented access to the Oval Office. The move will please some security pros, but frustrate others who think government is already in too deep. Thu, 28 May 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/493565/Cybersecurity_Crossroads_Will_White_House_Czar_Choose_the_Right_Path_?source=rss_compliance 2009-05-28T04:00:00Z http://www.csoonline.com/article/487963/DHS_Drug_Interdiction_and_Common_Sense?source=rss_compliance Fighting drug cartels requires that all agencies get on the same page. Jim Giermanski says Memorada of Understanding are producing the opposite effect. Fri, 03 Apr 2009 04:00:00 GMT http://www.csoonline.com/article/487963/DHS_Drug_Interdiction_and_Common_Sense?source=rss_compliance 2009-04-03T04:00:00Z http://www.csoonline.com/article/487745/Federalizing_Cybersecurity_Necessary_or_Nitwitted_?source=rss_compliance A cybersecurity bill may be filed in the U.S. Senate expanding government enforcement to the private sector. Security practitioners say more oversight of critical infrastructure wouldn't hurt. But anything more than that probably would. Wed, 01 Apr 2009 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/487745/Federalizing_Cybersecurity_Necessary_or_Nitwitted_?source=rss_compliance 2009-04-01T04:00:00Z