RSS Alerts

Tag Cloud

cloud computing cybersecurity Security encryption compliance Cloud David Harley cloud security

Bloggers

Blog

Follow and talk to Infosecurity's bloggers.

Follow Infosecurity's bloggers as they share their thoughts on the industry, technology, and much more. Our bloggers have been selected for their industry expertise. They welcome interaction, so we encourage you to add your opinions to theirs.

0
comments
Learning from Operation PRISM
We’re obviously not even close to the end of the revelations around both Operation PRISM and Edward Snowden, but (avoiding political or ethical commentary on what happened) a few things are becoming clear around the challenges and best practices of dealing with the malicious privileged insider ...
Posted 15 June 2013 by Geoff Webb
tags: PRISM, Snowden, Breach, Privileged Insider, encryption
0
comments
VA Controversy: Risk Management is a “Work in Progress”
A controversy concerning the information security policies at the US Department of Veterans Affairs was reported by Federal News Radio last week, and while it is dangerous to draw conclusions from leaks that precede scheduled congressional hearings, and doubly dangerous when those leaks are ass ...
Posted 10 June 2013 by (ISC)² U.S. Government Advisory Board Executive Writers Bureau (EWB)
tags: risk management, VA, ATO, NIST, continuous monitoring, POAM
0
comments
A Hybrid Approach for Migrating IAM to the Cloud
By Merritt Maxim We continue to hear about how cloud, mobility and the consumerization of IT has the potential to transform business. However, the ongoing hype around these trends may lead some to believe that these trends require an “all or none” approach. This can create conflicts a ...
Posted 10 June 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, IAM, identity, SaaS, authentication
0
comments
Don’t Let a Disaster Leave your Data Out in the Cold
By Andrew Wild When we see images from natural disasters like Hurricane Sandy of flooded neighborhoods, downed power lines and destroyed homes the first concern, of course, is for the safety of the people. But as a chief security officer I also think about how disasters affect companies and the vit ...
Posted 10 June 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, disaster planning, BCP
0
comments
Rethink Cloud Security to Get Ahead of the Risk Curve
By Kurt Johnson Ever since the cloud sprung up to the top of every IT discussion, the issue of cloud security was right alongside it. Let’s face it, enterprise security has never been easy, and the rapidly expanding use of software in the cloud has added layers of complexity – and risk ...
Posted 05 June 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, IAM, identity, Big Data, analytics
0
comments
How the “Internet of Things” Will Feed Cloud Computing’s Next Evolution
By David Canellos While the Internet of Things is not a new concept (Kevin Ashton first coined the term in 1999 to describe how the internet is connected to the physical world), it is just now becoming a reality due to some major shifts in technology. According to ABI Research, more than 5B wirele ...
Posted 05 June 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, Internet of Things, privacy, information security
0
comments
Defining “Equity” in the World of Critical Infrastructure Security
For several sessions in a row, federal cybersecurity legislation has been stalled while a squadron of lobbyists debate whether mandated compliance with federal standards will help or hinder IT security efforts in the private sector. The Administration is concerned that voluntary compliance will not ...
Posted 29 May 2013 by (ISC)² U.S. Government Advisory Board Executive Writers Bureau (EWB)
tags: critical infrastructure, compliance, public sector
0
comments
Russia Uses 'Single Register' Law To Selectively Block Internet Content
  “Won't somebody please think of the children?” seems to be Russia's refrain when it comes to their recent inception of internet censorship laws. It appears that Russian authorities are chiefly concerned about the promotion of self-harm and suicide via images ...
Posted 22 May 2013 by Jean-Loup Richet
tags: Roskomnadzor , internet censorship, Russia, Jean-Loup Richet, Single Register, Twitter, Censorship laws, Filtering
0
comments
Building Trust and Security through Transparency of Service
By David Baker With the growing movement of enterprises to the cloud, it’s more important than ever that service providers demonstrate and prove good security practices to their customers, in good times and in bad. During an incident, how a cloud provider communicates to its customers says a ...
Posted 21 May 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, cloud security, transparency, SLA, trust, business continuity, availability
0
comments
Liability and the “Commercially Reasonable” Standard
When new technology introduces new legal questions, it can take a long time for courts to sort matters out, and cybersecurity is no exception to the rule. Cyberattacks that yielded major breaches of financial companies in 2008 or 2009 have spawned a series of lawsuits that aim to determine liability ...
Posted 20 May 2013 by (ISC)² U.S. Government Advisory Board Executive Writers Bureau (EWB)
tags: (ISC)2, NIST, FFIEC, Cybersecurity, federal IT, compliance
0
comments
Plugging "Cloud Identity Leaks": Why Your Business Should Become an Identity Provider
By Mark O’Neill Most people have used the Facebook, Twitter, or Google Apps buttons located on websites to log into third-party services. This approach is useful within consumer IT as it enables the user to access various services via their own Facebook, Twitter or Google Apps passwords witho ...
Posted 15 May 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, cloud security, identity, identity provider
0
comments
Securing Credit Card Voice Transactions
This afternoon, I met the CEO (and co-founder) of Semafone, Tim Critchley. When the invitation to interview him landed in my inbox, I was all set to turn it down. As Critchley himself admits, call centre security is “far from sexy”, and it’s not a topic that had ever occurred to me ...
Posted 09 May 2013 by Eleanor Dallaway
tags: credit card, secure , call centre, fraud, payment
0
comments
Talking Infosec Awareness and Training with Kaspersky Labs’ David Emm
Shortly before the chaos of Infosecurity Europe, I joined David Emm, senior security researcher at Kaspersky Lab, for lunch in a lovely quiet gastro pub in the Oxfordshire countryside. Whilst I frequently publish Emm’s quotes and photos in the magazine, we both agreed that this was most likel ...
Posted 03 May 2013 by Eleanor Dallaway
tags: Kaspersky, Infosecurity, Awareness, Security, Cybersecurity
0
comments
Should Information Security Professionals be Licensed to Practice?
Last week we published accompanying editorials from our most recent print edition that asked a rather simple question: Should information security professionals be licensed to practice? Arguing in favor of such a licensing scheme, ISACA’s Alan Boardman lays out several reasons why infosec pro ...
Posted 02 May 2013 by Drew Amorosi
tags: information security, license , education, certification
0
comments
Security Check List: An Ounce of Prevention is Better than a Pound of Cure
By Wolfgang Kandek It is common belief that buying more robust and expensive security products will offer the best protection from computer-based attacks; that ultimately the expenditure pays off by preventing data theft. According to Gartner, more than $50 billion is spent annually on security inf ...
Posted 30 April 2013 by Cloud Security Alliance (CSA)
tags: patch management, security education, security controls
0
comments
Identity Management Plays a Key Role in Mobile Device Management (MDM)
By Dan Dagnall As BYOD and other mobile device related initiatives take hold, sooner rather than later, identity management will once again be considered as an enforcement mechanism; and rightly it should. Identity and access management (IAM) has grown up over the years. Its early beginnings were ...
Posted 30 April 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, MDM, identity, IAM, BYOD
0
comments
How to Adopt the Public Cloud While Attaining Private Cloud Control and Security
By Gerry Grealish Earlier this year, McKinsey & Company released an article titled “Protecting information in the cloud,” discussing the increased use of cloud computing by enterprises across several industries and the benefits and risks associated with cloud usage. The article reco ...
Posted 26 April 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, public cloud, private cloud, encryption, encryption gateway
0
comments
Cloud-Based Identity Management: Best Practices for Rapid End-User Adoption
By Glenn Choquette Identity Management (IdM) is not new. Yet, after all this time on the market, organizations still have mixed results for end-user adoption, as many organizations that rolled-out IdM years ago still haven’t achieved their goals: end-users keep calling the help desk to reset ...
Posted 26 April 2013 by Cloud Security Alliance (CSA)
tags: identity, cloud computing, IdM
0
comments
Will CISPA pass this time?
Recently the controversial Cyber Information Sharing and Protection Act (CISPA) was passed by the US House of Representatives for the second time. The bill would mean that technology and web companies would be able to share any and all of their customers’ private information with government ag ...
Posted 22 April 2013 by Jean-Loup Richet
tags: CISPA, Jean-Loup Richet, internet censorship, hactivism, sopa, pipa
0
comments
Live on-stand interviews & wine: What we're up to at Infosecurity Europe...
Well, it's our last day in the office before we all go on site for Infosecurity Europe next week. There's a lot of excitement (and panic!) in the air...A few bits of news about what myself and the rest of team Infosecurity will be up to at the event next week... First things first, you can find us ...
Posted 19 April 2013 by Eleanor Dallaway
tags: Infosecurity, infosec13, Infosecurity europe, ciso, interview
123...23NEXTLAST
Showing 1 - 20 of 449 blogs
View the RSS feed for this blog »
Terms & Conditions | Privacy | Website Design| Reed Exhibitions. All rights reserved. Copyright © 2013
We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies. ×