STRATEGIC PLANNING/ERM Articles
How to Handle Security Patches With Sanity
Guest columnist and network administrator Ed Ziots offers his recipe for a sane and solid patch management program.
What's Your Risk Appetite?
Hoarding cash? Stifling innovation? Mark Carey of Deloitte & Touche looks at how companies do (or should) think about risk-and-reward decisions in uncertain times. Part of the Security Predictions series.
5 Must-Do Cyber Security Steps for Obama
As President-Elect Obama focuses on two wars and a hemorrhaging economy, security experts are urging him to address five weak security links in America's cyber infrastructure that threaten the nation's defenses and financial institutions.
To Govern or Not to Govern
Cylab study highlights gaps in Board oversight of security and privacy
Forrester: Why (and How) Security Must Drive Business Resiliency
Four reasons and eight practical steps for building a better business resiliency program.
Rich Mogull: 7 Infosec Trends for 2009
Shrinking budgets, the collapse of the database security market, DLP going mainstream - the former Gartner pundit places his bets for the coming year. (Part of the What Happens Next security predictions series.)
Security Predictions: What Happens Next?
An ongoing index of predictions, projections and prognostication for 2009 and beyond. Marcus Ranum, Rich Mogull, Jeff Spivey, Whit Diffie, Richard Hollinger and many more.
Jeff Spivey on Enterprise Risk Management
The former ASIS president explains the accelerating move to more comprehensive risk management models. (Part of the What Happens Next security predictions series.)
Why Security Needs More Joe The Plumbers, Fewer Geeks
One lesson from the 2008 Global State of Security Survey is that too much of the security focus is in the hands of the techies, not enough in the hands of the wider workforce.
Centralizing Enterprise Security Operations and Management
Jeff Ahlerich of Looking Glass Systems looks at transcending the politics.
