RSS Alerts

Roger Halbheer

Job title:
Chief security advisor, Microsoft

Areas of expertise:
Policy, architecture, law enforcement, cybersecurity, processes

Biography:
Roger Halbheer joined Microsoft as Chief Security Advisor of Microsoft Switzerland in 2001 and was promoted to the role of Chief Security Advisor for Microsoft Europe, the Middle East and Africa (EMEA) in February 2007. Roger leads a team of national Chief Security Advisors across EMEA who work with organizations in the commercial and public sectors - including national governments, law enforcement and intelligence agencies - on information technology issues and strategies. He is a trusted advisor to C-level executives, governments and law enforcement agencies and has established relationships with security communities and government agencies across the region. Roger is a regular speaker at industry events and has worked with national and international print and broadcast media both to represent Microsoft and to provide expert comment on broader security issues. A Swiss national, Roger holds a Master of Computer Science degree from the Federal Institute of Technology in Zurich and is a Certified Information System Security Professional (CISSP). Before joining Microsoft, he was responsible for e-Business Risk Management at PricewaterhouseCoopers in Switzerland. He lives in Zurich and is married with two sons.

Tag Cloud

WiFi WiFi Security malware blackhat seo compromised sites Web Security Rogue AV spam

Bloggers

Blog

Follow and talk to Infosecurity's bloggers.

Follow Infosecurity's bloggers as they share their thoughts on the industry, technology, and much more. Our bloggers have been selected for their industry expertise. They welcome interaction, so we encourage you to add your opinions to theirs.

All Bloggers » Roger Halbheer
0
comments
Microsoft and Adobe: Collaboration Against Threats
You know my opinion on collaboration between countries, on public-private-partnerships, as well as on collaboration between companies. For quite a while we have been running a program called MAPP – the Microsoft Active Protections Program – where we share vulnerability in ...
Posted 28 July 2010 by Roger Halbheer
tags: Vulnerabilities
0
comments
Cloud Computing: Benefits and Risks of Moving Federal IT into the Cloud
July 1st: Scott Charney, Corporate Vice President Trustworthy Computing was testifying at a hearing of the House Committee on Oversight and Government Reform. Basically the hearing was on the benefits and risk of Cloud adoption for the US government. If you are interested in reading his full testimo ...
Posted 06 July 2010 by Roger Halbheer
tags: Cloud , Governments
0
comments
The Importance of International Collaboration –Even in Exercises
One of the biggest challenges in Critical Infrastructure Protection or Incident Response is collaboration. Collaboration between the public and the private sector as the private sector is most often running the critical infrastructure; collaboration between different governments as well, as incident ...
Posted 16 June 2010 by Roger Halbheer
tags: Critical Infrastructure Protection
0
comments
Should the Government be able to enforce security updates?
This is actually an interesting question. A lot of governments enforce rules and regulations on how you have to run your car, how often you have to check it, in which condition you have to keep your tires, etc. The same is true for a lot of other devices we are using. Now, it seems that the US just ...
Posted 12 June 2010 by Roger Halbheer
tags: Legislation , Cybersecurity
0
comments
Hacking the human body
Years ago I was sitting in a healthcare event, when a researcher was talking (very excited) about the idea of having a pacemaker with Bluetooth access to fine-tune the system and read information from the sensors. Even though this might medically be a great idea, I would be fairly reluctant having s ...
Posted 27 May 2010 by Roger Halbheer
tags: not tagged.
0
comments
Identity in the Cloud
Kim Cameron, one of our key identity architects had an interesting presentation on identity in the cloud and a corresponding interview. Both are worth looking at if you are planning to move into the direction of the cloud. Especially as it is definitely one of the key challenges: This is Kim's pres ...
Posted 25 May 2010 by Roger Halbheer
tags: Cloud , Identity
0
comments
A Detailed Analysis of an Attack – Do We Need an International Incident Sharing Database?
I recently came across a paper called Shadows in the Cloud, which is actually a follow-up report of Tracking GhostNet: Investigating a Cyber Espionage Network, an investigation of the attacks on the office of the Dalai Lama and some governmental bodies. The report is written by two bodies who had th ...
Posted 21 April 2010 by Roger Halbheer
tags: Cybercrime
0
comments
Council of Europe – Octopus Conference (Cooperation against Cybercrime) – Key Messages
I blogged on Day 1 and Day 2 but as I expected, I was unable to blog yesterday on the conference. However, let me just briefly give you my impression of the final day: The core part of this last day was a whole block on Cloud Computing. There were different presentations on the subject and then a p ...
Posted 26 March 2010 by Roger Halbheer
tags: not tagged.
0
comments
Council of Europe: We need ONE Cybercrime Convention
As you saw from previous posts, I am at the Octopus Conference on Cooperation against Cybercrime at the moment. We had yesterday the Deputy Secretary General of the Council of Europe and one of her key statements was that different bodies (like the Council of Europe, UN etc.) should not compete. The ...
Posted 24 March 2010 by Roger Halbheer
tags: Legislation , Cybercrime
0
comments
Council of Europe – Octopus Conference (Cooperation against Cybercrime) Day 1
A few years ago, the Budapest Convention on Cybercrime was signed within the Council of Europe. Since then it was ratified all across the globe by a lot of countries or at least used as the base for legislation. The Council of Europe is organising a conference on Cooperation against Cybercrime, call ...
Posted 23 March 2010 by Roger Halbheer
tags: Cybercrime
0
comments
Making the Management of Security Compliance Easier!
As you all know, I have two main pet themes: Risk Management and Compliance Management as I see very often that there is room for improvement when it comes to such processes within our customers. Internally, we often think about how we can make it easier for our customers to manage compliance in the ...
Posted 18 February 2010 by Roger Halbheer
tags: Compliance , Policy
0
comments
MTaS: Malware Testing as a Service
Well, in my last post I wrote about the prices for malware. Today I read the next evolution of this: The possibility of having malware tested against anti-malware tools – not to make sure malware is really recognised, no, the other way round: To make sure it is not recognised. I read this art ...
Posted 05 January 2010 by Roger Halbheer
tags: not tagged.
0
comments
The Cybercriminal’s Wish List
I know that Christmas is over and I know how my kids actually compile a Wish List: They take most of the ads (which are targeted to them) and glue them onto a piece of paper for mum and dad to make sure that everything can be found under the Christmas tree… I guess you know the drill. If you ...
Posted 01 January 2010 by Roger Halbheer
tags: not tagged.
0
comments
Get Safe Online: Don’t be a Money Mule
You know, there are people who blog late, there are people who blog very late and then there is me… I actually missed that one even though I was triggered: Mid November there was the Get Safe Online Week 2009 in the UK. Usually they do really good stuff and this is the reason I usually blog ...
Posted 04 December 2009 by Roger Halbheer
tags: Consumer
0
comments
The Africa Cable – A Chance for Africa! – A Threat for the Internet?
The development in Africa especially with the new broadband services to me is a huge chance for the whole continent. I just found a map (Image 1) on the next two years. Even though I have not been in Africa over the last few months, I heard that in different cities fiber is brought directly to the ...
Posted 07 October 2009 by Roger Halbheer
tags: Trends , Broadband
0
comments
Thoughts on the registered traveler programmes at airports
When I entered the US this time, I got a brochure on how I could avoid the line at immigration and just get a fast track by registering with the Global Entry Program, a programme, which would pre-screen me and then I just have to register with a machine by entering the US. As I understand, this is a ...
Posted 30 September 2009 by Roger Halbheer
tags: Privacy , Processes
0
comments
Hey, You, Get Off of My Cloud
I recently had different discussions with different customers and we were looking into the key questions to ask, when you plan to move to the cloud (yes, I am working on a corresponding blog post). I was then asked whether we have an answer to these questions – well no. For sure not for a ...
Posted 27 September 2009 by Roger Halbheer
tags: Cloud Computing
0
comments
Why it pays to be secure - Chapter 2 - Vulnerabilities
The Microsoft Security Intelligence Report (SIR) provides an in-depth perspective on the changing threat landscape including software vulnerability disclosures and exploits, malicious software (malware), and potentially unwanted software. http://www.microsoft.com/security/portal/sir.aspx Updatin ...
Posted 23 September 2009 by Roger Halbheer
tags: Business Value
0
comments
Moving to the Cloud: Where it worked and where I was challenged
I am running a whole environment at home to experience our technology. However, up to now it was all “on premise”, no Cloud integration. This has to change. Therefore I was more than happy to join our internal  Hosted Exchange 14 beta program. We are offering the hosted Exchange pro ...
Posted 21 September 2009 by Roger Halbheer
tags: Cloud Computing
0
comments
Microsoft SDL Team Releases New Security Testing Tools
I often mention that we try to give you all the tools we have as long as it makes sense form a risk perspective. The risk perspective is a simple one: If we give it to you as our customer, we give it as well to the criminals. There are two new tools which just made the bar and which are now release ...
Posted 16 September 2009 by Roger Halbheer
tags: Development
3
comments
H1N1 (Swine) Flu Preparedness - Guide for Critical Infrastructure and Key Resources
This morning I stumbled across a guide by the US Health & Human Services with regards to H1N1. Even though it did not catch much news lately I am not sure whether it is really over. Staying prepared it definitely not a bad thing. Even though it is US-centric, you should probably look into it: ht ...
Posted 16 September 2009 by Roger Halbheer
tags: Incident Response
0
comments
Why it pays to be secure - Chapter 1 - Data Breaches
In my first post here, I opened the field for a series on “Why it pays to be secure”. As I told you there, Henk van Roest, our Security Support Program Manager in EMEA kicked this off for internal training. Let’s return to the theme of deploying security updates once more, we need ...
Posted 14 September 2009 by Roger Halbheer
tags: Compliance , Policies , Business Value , Processes
0
comments
Why it pays to be secure
You might all know that feeling: You need money to finance security activities and you are asked why this money shall be invested. And then we start to argue that if we do not do it – bad things happen. These are questions that myself and our support get often. That was the reason why we start ...
Posted 11 September 2009 by Roger Halbheer
tags: Processes , Policies , Business Value , Compliance
View the RSS feed for this blog »
Copyright © 2010
Elsevier Ltd. All rights reserved.
Terms & Conditions | Privacy | Website Design Working with water