How SCAP Brought Sanity to Vulnerability Management
Orbitz CISO Ed Bellis explains how the proliferation of vulnerability assessment products and services has created chaos, and how SCAP may be the answer.
5 Steps to Communicate Security's Value to Non-security People
In belt-tightening times, making the case for security investment is more difficult than ever. Security Catalyst founder Michael Santarcangelo details five steps risk professionals can use to communicate value effectively.
5 Ways To Survive a Data Breach Investigation
When the digital forensics crew comes in to investigate a possible data breach, company execs often make matters worse by not being prepared. Here are five ways to keep it from happening to you.
VMS: How to Manage Surveillance Video
Video management software helps with efficient monitoring, transmission and storage of IP surveillance video. Here's how to evaluate, purchase and implement VMS.
A Real Dumpster Dive: Bank Tosses Personal Data, Checks, Laptops
In this new age of data protection, where most information is stored digitally and paper shredding is commonplace, you don't need to worry about private information ending up in the garbage, right? Steve Hunt shows that assumption is just plain wrong (includes video).
Federalizing Cybersecurity: Necessary or Nitwitted?
A cybersecurity bill may be filed in the U.S. Senate expanding government enforcement to the private sector. Security practitioners say more oversight of critical infrastructure wouldn't hurt. But anything more than that probably would.
Researcher: Power Grid Hackers Probably Attacked Typical PC Flaws
Plenty of PCs have been compromised in different industries, critical or not, says Roger Thompson.
Data Security: Whose Job Is It Really?
Forrester has a recommendation for CISOs struggling with how to secure corporate data: Stop trying so hard.
Fleury: Shoring Up Internal Defenses
CSO Compass Award winner Lynda Fleury, CISO with insurance company Unum, thinks companies should look inward to strengthen information security's weakest link.
Pethia: InfoSec's Challenges, Changes
CERT-CC founding director Rich Pethia reflects on old IT security issues, and the ones CISOs are facing now.
Geer: Risk Management Should Change the Future
Information security pioneer Dan Geer reflects on the past, and looks toward the future of risk management.
Cancilla: Security Must Put Business First
Russ Cancilla, CSO with Baker Hughes Inc., believes that security can enable business with the right attitude.
Rodriguez: Collaboration Accelerates Security Innovation
Security Innovation Network Chairman Robert Rodriguez on why small, unknown security companies need the chance to work with federal officials.
Martinicky: Security More Important Than Ever in Tough Times
John Martinicky, the long-standing director of global security with Navistar International, has seen recessions come and go. But the security director says the need for risk management always remains.
Security Directions: A Virtual Conference
Available On Demand Sept. 30 - Dec. 30
Join us for a virtual event with candid, expert information on top security challenges and issues - all from the comfort of your desktop.
Protecting PII: How to Work with IT to Manage Risk
Understand the critical nature of the test data privacy problem and get tips on how to work with IT to implement a test data privacy program.
