The Mass. 201 CMR 17 Survival Guide
As companies scramble to meet the requirements of the Bay State's data security law, CSOonline.com offers this collection of articles and podcasts to help IT security practitioners and compliance officers find the best approach.
PCI DSS: No Angel, But Certainly Not the Devil
Security luminaries Anton Chuvakin and Ben Rothke explain why 451 Group analyst Josh Corman is off base when he compares PCI security to a devil and "No Child Left Behind."
Federal Data Security Law: 'Careful What You Wish For'
A cybersecurity bill advanced further up the U.S. Senate gauntlet last week, and some IT security practitioners aren't happy about it.
Analyst: PCI Security a Devil, 'Like No Child Left Behind'
Joshua Corman, research director for enterprise security at The 451 Group, says the private sector's obsession with PCI DSS compliance is blinding it to larger threats.
Delayed Again: Red Flags Rule Deadline Now June 1, 2010
Bowing to Congressional pressure, the FTC is delaying enforcement of the Red Flags Rule until June 1, 2010, for financial institutions and creditors. Here, IT security pros weigh in on what the rule means for them.
IT Security Outsourcing in Decline; Companies Do More In-house
Seventh Annual Global Information Security Survey: Companies that once outsourced many IT security controls have opted to do more in-house. A look at what caused the shift. (Third in a four-part series)
Companies Seek Social Networking's promise, Find Peril Instead
Seventh Annual Global Information Security Survey: Social networking sites such as Twitter, Facebook and LinkedIn enhance collaboration but also make it easier than ever for your employees to share customer data and company secrets with outsiders (First of a four-part series).
Making Sense of Rapid7's Metasploit Acquisition
The information security community stands to benefit from Rapid7's acquisition of Metasploit, IT security experts say. But much depends on how Rapid7 handles its new property.
The Seven Deadly Sins of Security Policy
Are your security policies really managing your organization's risks? Or are they just 'check-the-box' rules? We detail common policy mistakes security pros often make.
7 Ways Security Pros DON'T Practice What They Preach
IT security pros spend oodles of time trying to hammer best practices into the heads of fellow employees. But in an informal poll conducted by CSOonline, many admitted they don't always follow their own advice.
Security Directions: A Virtual Conference
Available On Demand Sept. 30 - Dec. 30
Join us for a virtual event with candid, expert information on top security challenges and issues - all from the comfort of your desktop.
Protecting PII: How to Work with IT to Manage Risk
Understand the critical nature of the test data privacy problem and get tips on how to work with IT to implement a test data privacy program.
- More Headlines
- Change Topic
Data Protection
- Cisco's Free IPhone App Grabs Security Feeds
- Security Pro Says New SSL Attack Can Hit Many Sites
- 3 Basic Steps to Avoid Joining a Botnet
- Security Vendor Fortinet Sparkles in IPO
- NSA Helped with Windows 7 Development
- The Mass. 201 CMR 17 Survival Guide
- 64-Bit Windows Safer, Claims Microsoft
- Firefox 3.6 Locks Out Rogue Add-Ons
- How to Hack China for Just $1,800
- The Cloud Security Survival Guide
