http://www.infosecurity-us.com/ Copyright Elsevier Ltd Intuitiv Ltd (www.intuitiv.net) Fri, 30 Jul 2010 10:30:21 GMT http://www.infosecurity-us.com/ http://www.infosecurity-us.com/_common/img/template/infosec-us/site-logo.gif http://www.infosecurity-us.com/view/11291/comment-raising-the-security-standard/ Idappcom CEO Ray Bryant discusses how to step up your security defenses by measuring current effectiveness and enhancing your security solutions. Tue, 27 Jul 2010 19:11:00 GMT http://www.infosecurity-us.com/view/11291/comment-raising-the-security-standard/ http://www.infosecurity-us.com/view/11117/running-the-right-risks/ Standards cover much of the field of information risk management, but there is an art to the rational understanding and mitigation of risk that is more about skill than knowledge. Brian McKenna uncovers how the discipline can be practiced with a cool head and a calm stomach Wed, 21 Jul 2010 07:00:00 GMT http://www.infosecurity-us.com/view/11117/running-the-right-risks/ http://www.infosecurity-us.com/view/11081/comment-a-logical-shortfall-for-the-complete-cso/ Meridian’s Paul Johnson examines the differences between CSO and CISO and makes the case as to why small and medium-sized organizations must consider logical security training if they choose to employ an all-encompassing CSO, rather than separating logical security responsibilities out to a CISO. Mon, 19 Jul 2010 19:00:00 GMT http://www.infosecurity-us.com/view/11081/comment-a-logical-shortfall-for-the-complete-cso/ http://www.infosecurity-us.com/view/11010/information-security-read-all-about-it/ Ill news travels quick and far, or so the saying goes. But how well is security-related news covered in the press, and what are people writing about? Danny Bradbury investigates Thu, 15 Jul 2010 21:42:00 GMT http://www.infosecurity-us.com/view/11010/information-security-read-all-about-it/ http://www.infosecurity-us.com/view/10628/editorial-facebook-cant-catch-a-break/ Legend has it that the late West Virgina Senator Robert Byrd carried a copy of the US constitution in his pocket at all times while on the floor of the Senate. Infosecurity's Drew Amorosi shares his opinions as to why Facebook's Mark Zuckerberg should do the same, or at the very least a current text on civil liberties. Tue, 29 Jun 2010 20:33:00 GMT http://www.infosecurity-us.com/view/10628/editorial-facebook-cant-catch-a-break/ http://www.infosecurity-us.com/view/10516/comment-rogue-access-point-setups-on-corporate-networks-/ The latest in a series of wireless security articles from AirTight Networks’ Ajay Kumar Gupta examines rouge access point scenarios that could affect corporate networks (or any network for that matter). Thu, 24 Jun 2010 16:16:00 GMT http://www.infosecurity-us.com/view/10516/comment-rogue-access-point-setups-on-corporate-networks-/ http://www.infosecurity-us.com/view/10220/comment-automated-security-analysis-learning-to-love-change/ Change is the only constant in security – new users, new apps, growing networks and new threats mean recurring headaches for security teams. So how can IT stay ahead of change when everything is in flux? Gidi Cohen of Skybox Security shows how Mon, 14 Jun 2010 23:00:00 GMT http://www.infosecurity-us.com/view/10220/comment-automated-security-analysis-learning-to-love-change/ http://www.infosecurity-us.com/view/10063/taking-down-a-botnet/ This past February, Microsoft, along with industry partners and academic researchers, spearheaded an effort to take the Waledec botnet offline. Drew Amorosi provides a detailed account of just how the cooperative endeavor was able to halt – at least temporarily – the notorious spam serving network. Tue, 08 Jun 2010 22:21:00 GMT http://www.infosecurity-us.com/view/10063/taking-down-a-botnet/ http://www.infosecurity-us.com/view/10029/comment-antimalware-automation-tools-save-time-and-money/ IT budgets continue to be squeezed while malware challenges become more formidable each day. Matt Allen of Norman Data Defense Systems discusses how sandboxing technologies can deliver on cost-effectiveness and timeliness claims by doing high-volume malware analysis in a safe environment. Mon, 07 Jun 2010 16:12:00 GMT http://www.infosecurity-us.com/view/10029/comment-antimalware-automation-tools-save-time-and-money/ http://www.infosecurity-us.com/view/9969/comment-avoiding-and-recovering-from-nasty-network-configuration-mistakes/ Network mistakes constantly happen throughout the day and are the bane of the network manager. Reuven Harrison, CTO of Tufin Technologies, provides some excellent hints and tips for network managers Thu, 03 Jun 2010 18:38:00 GMT http://www.infosecurity-us.com/view/9969/comment-avoiding-and-recovering-from-nasty-network-configuration-mistakes/ http://www.infosecurity-us.com/view/9913/like-falling-off-a-log-/ System logs haven’t really changed since the days of the IBM 360, but the need to manage them effectively for security purposes certainly has. Danny Bradbury finds out why log management is so important – and why we aren’t doing it properly Wed, 02 Jun 2010 17:00:00 GMT http://www.infosecurity-us.com/view/9913/like-falling-off-a-log-/ http://www.infosecurity-us.com/view/9694/a-breach-too-far/ How much do data breaches really damage organizations financially – and why don’t we want to hear about it? Danny Bradbury investigates Mon, 24 May 2010 16:00:00 GMT http://www.infosecurity-us.com/view/9694/a-breach-too-far/ http://www.infosecurity-us.com/view/9661/comment-saas-offerings-for-wireless-pci-compliance/ The first PCI DSS compliance deadline is approaching in September, and with that comes the ever-growing concerns over protecting payment card information transmitted over wireless connections. Ajay Kumar Gupta of AirTight Networks discusses the various SaaS offerings that allow small and medium-sized business to achieve compliance while improving WiFi security. Mon, 24 May 2010 09:37:00 GMT http://www.infosecurity-us.com/view/9661/comment-saas-offerings-for-wireless-pci-compliance/ http://www.infosecurity-us.com/view/9620/comment-contextaware-security-in-vdi-implementations/ Bob Janssen of RES Software examines how secure desktop virtualization can be achieved using a context-centric approach Thu, 20 May 2010 17:39:00 GMT http://www.infosecurity-us.com/view/9620/comment-contextaware-security-in-vdi-implementations/ http://www.infosecurity-us.com/view/9516/comment-black-swans-secure-access-and-business-continuity/ How can businesses deliver flexible, scalable and secure remote access to staff during contingencies, while controlling costs? Check Point’s Nick Lowe describes a new approach to the problem Mon, 17 May 2010 17:30:00 GMT http://www.infosecurity-us.com/view/9516/comment-black-swans-secure-access-and-business-continuity/ http://www.infosecurity-us.com/view/9443/grading-obama-on-cybersecurity/ Early in his term, President Obama promised to address the issue of cybersecurity by continuing and even expanding upon the efforts of the previous administration. Lauren Moraski surveys experts in the field, providing an assessment of the job the new president is doing so far to address this issue Thu, 13 May 2010 20:29:00 GMT http://www.infosecurity-us.com/view/9443/grading-obama-on-cybersecurity/ http://www.infosecurity-us.com/view/9345/updating-your-security-policy-in-2010/ Great standards now exist for drafting security policies, but how do you make it real among corporate populations beset by recession, up for the outsourcing chop, and addicted to Facebook? Brian McKenna reports Mon, 10 May 2010 23:16:00 GMT http://www.infosecurity-us.com/view/9345/updating-your-security-policy-in-2010/ http://www.infosecurity-us.com/view/9233/securing-electronic-health-records/ Electronic health records are supposed to improve the efficiency and accuracy of healthcare delivery. However, with electronic records come security headaches, and the potential for data breaches. John Sterlicchi examines what the industry is doing thus far to facilitate a secure transition toward electronic health records Wed, 05 May 2010 21:12:00 GMT http://www.infosecurity-us.com/view/9233/securing-electronic-health-records/ http://www.infosecurity-us.com/view/9002/anatomy-of-a-ciso/ Have you ever wondered what your boss does all day long to earn that lucrative salary? For those of you who yearn for the top seat, Davey Winder reveals what it’s like to live a day in the life of an average CISO Mon, 26 Apr 2010 10:54:00 GMT http://www.infosecurity-us.com/view/9002/anatomy-of-a-ciso/ http://www.infosecurity-us.com/view/8923/editorial-sometimes-honesty-doesnt-pay/ Infosecurity’s Drew Amorosi shares his opinions on the recent dismissal of Pennsylvania’s CISO and the role that open dialogue played in the decision Wed, 21 Apr 2010 19:14:00 GMT http://www.infosecurity-us.com/view/8923/editorial-sometimes-honesty-doesnt-pay/ http://www.infosecurity-us.com/view/8685/comment-whats-your-seo-poison/ SEO poisoning is an increasingly popular method of attack for cybercriminals, and one that shows they are using more sophisticated techniques. In the last year, attackers have poisoned search results on everything from the MTV Video Music Awards to Google Wave invitations. Patrik Runald of Websense asks what makes these attacks such a success, and what does this mean for 2010? Mon, 12 Apr 2010 18:44:00 GMT http://www.infosecurity-us.com/view/8685/comment-whats-your-seo-poison/ http://www.infosecurity-us.com/view/8684/comment-smart-grid-security-the-path-ahead/ IOActive’s Joshua Pennell implores AMI vendors to use a secure development lifecycle to maintain the security and availability of ‘smart grid’ technologies Mon, 12 Apr 2010 17:00:00 GMT http://www.infosecurity-us.com/view/8684/comment-smart-grid-security-the-path-ahead/ http://www.infosecurity-us.com/view/8624/comment-the-longterm-cost-of-instant-security-gratification/ Geoff Webb of NetIQ asks if we really can achieve greater security by rushing to invest in the latest security tools that vendors have to offer. His thoughts may surprise you. Thu, 08 Apr 2010 17:00:00 GMT http://www.infosecurity-us.com/view/8624/comment-the-longterm-cost-of-instant-security-gratification/ http://www.infosecurity-us.com/view/8576/comment-compliance-trends-on-the-horizon/ Cheryl Klein of GRC Consulting believes that a focus on automation is the single best way to keep compliance costs manageable, especially for medium and smaller-sized businesses Wed, 07 Apr 2010 18:00:00 GMT http://www.infosecurity-us.com/view/8576/comment-compliance-trends-on-the-horizon/ http://www.infosecurity-us.com/view/8500/comment-security-risk-exposure-increases-due-to-windows-7-virtual-wifi-capability/ Ajay Kumar Gupta of AirTight Networks examines how new Wi-Fi capabilities in Windows 7 can lead to unauthorized network access and subsequent security issues Thu, 01 Apr 2010 17:25:00 GMT http://www.infosecurity-us.com/view/8500/comment-security-risk-exposure-increases-due-to-windows-7-virtual-wifi-capability/ http://www.infosecurity-us.com/view/8393/comment-are-we-winning-the-war-against-cybercrime/ Simone Seth from the Information Security Forum asks if we are winning the fight against the cyber criminals Mon, 29 Mar 2010 07:00:00 GMT http://www.infosecurity-us.com/view/8393/comment-are-we-winning-the-war-against-cybercrime/ http://www.infosecurity-us.com/view/8178/comment-it-security-implications-for-the-war-on-terror/ John Poulter of Informatica examines why IT security professionals in both the private and public sector are primary combatants in the global War on Terror. He explores options on aiding this process, and how to do so without ‘breaking the bank’ Thu, 18 Mar 2010 19:30:00 GMT http://www.infosecurity-us.com/view/8178/comment-it-security-implications-for-the-war-on-terror/ http://www.infosecurity-us.com/view/8034/searching-for-security/ With more than 30 000 web pages being compromised every day, search engine results could increasingly lead to malware infection. Kari Larsen asks what the search engines are doing to mitigate security threats, and how users can protect themselves Mon, 15 Mar 2010 07:00:00 GMT http://www.infosecurity-us.com/view/8034/searching-for-security/ http://www.infosecurity-us.com/view/7906/music-filesharing-enters-a-new-decade-/ The recording industry continues to lose billions of dollars each year, along with tens of thousands of jobs, all thanks to illegally downloaded files. Lauren Moraski examines what is being done to combat the drain on this sector Wed, 10 Mar 2010 07:00:00 GMT http://www.infosecurity-us.com/view/7906/music-filesharing-enters-a-new-decade-/ http://www.infosecurity-us.com/view/7838/battle-of-the-internet-browsers/ Browsers are the hacker’s window into your PC – but how are they compromised, and what are vendors doing to harden them? Danny Bradbury examines the techniques vendors are employing, and looks at why user education is one of the primary solutions for increased security Mon, 08 Mar 2010 07:00:00 GMT http://www.infosecurity-us.com/view/7838/battle-of-the-internet-browsers/ http://www.infosecurity-us.com/view/7646/the-dummies-guide-to-trade-shows/ IT security trade shows are an important part of the industry, but taking time off from your regular duties and travelling to the event can be an expensive and time-consuming job in itself. Veteran show-goer Steve Gold explains how it’s done Thu, 25 Feb 2010 17:38:00 GMT http://www.infosecurity-us.com/view/7646/the-dummies-guide-to-trade-shows/ http://www.infosecurity-us.com/view/7602/an-olympic-effort-to-secure-the-games-/ Managing the security of the 2010 Olympic Games in Vancouver is no mean feat. Danny Bradbury went behind the scenes at the Olympic site to talk to the people who are tasked with ensuring the event goes smoothly Wed, 24 Feb 2010 19:00:00 GMT http://www.infosecurity-us.com/view/7602/an-olympic-effort-to-secure-the-games-/ http://www.infosecurity-us.com/view/7410/comment-top-reasons-why-corporate-wifi-clients-connect-to-unauthorized-networks-/ Ajay Kumar Gupta of AirTight Networks reviews some of the most common reasons why corporate Wi-Fi users connect to unauthorized networks and what can be done to combat the problem. Wed, 17 Feb 2010 20:40:00 GMT http://www.infosecurity-us.com/view/7410/comment-top-reasons-why-corporate-wifi-clients-connect-to-unauthorized-networks-/ http://www.infosecurity-us.com/view/7020/file-reputation-comes-of-age-/ Using reputation in the security field makes users safer. Danny Bradbury takes a look at file reputation technology, and finds that if carefully managed and skillfully honed, it can be a useful addition to a security suite Thu, 04 Feb 2010 13:00:00 GMT http://www.infosecurity-us.com/view/7020/file-reputation-comes-of-age-/ http://www.infosecurity-us.com/view/6978/comment-with-information-security-you-must-regulate-yourself/ Morey Haber of eEye Digital Security believes that information security is a horizontal issue that we regulate vertically. Here he examines why this tactic is putting us all at risk. Tue, 02 Feb 2010 20:33:00 GMT http://www.infosecurity-us.com/view/6978/comment-with-information-security-you-must-regulate-yourself/ http://www.infosecurity-us.com/view/6693/comment-the-magic-triangle-of-information-security/ Senior IT security veteran Michael Oberlaender explains why availability, integrity, and confidentiality of information are all vital to an organization’s goals and reputation. He also examines the balancing act of security, costs, and functionality that must be evaluated by any IT security professional. Fri, 22 Jan 2010 17:19:00 GMT http://www.infosecurity-us.com/view/6693/comment-the-magic-triangle-of-information-security/ http://www.infosecurity-us.com/view/5570/the-user-is-not-the-enemy-how-to-increase-information-security-usability-/ People have long been accused of being the ‘weakest link’ in information security, but what if lack of usability and security training is actually at the heart of the matter? Wendy M. Grossman investigates Fri, 27 Nov 2009 00:00:00 GMT http://www.infosecurity-us.com/view/5570/the-user-is-not-the-enemy-how-to-increase-information-security-usability-/ http://www.infosecurity-us.com/view/5347/complex-information-security-compliance-for-multinational/ Multinational companies in North America face a raft of red tape in terms of compliance and regulatory issues, as well as the uphill task of dealing with the complexities of international IT systems and resources. Steve Mansfield-Devine asks how companies can stay within the regulatory confines of relevant information security legislation without compromising profitability Thu, 19 Nov 2009 00:00:00 GMT http://www.infosecurity-us.com/view/5347/complex-information-security-compliance-for-multinational/ http://www.infosecurity-us.com/view/5231/the-challenge-of-security-by-compliance/ Information security has become an unavoidable issue for banking and other financial services organizations globally, and recently many of these organizations have turned to compliance, regulations and industry standards to secure their data and information infrastructure. John P. Pironti reports Fri, 13 Nov 2009 00:00:00 GMT http://www.infosecurity-us.com/view/5231/the-challenge-of-security-by-compliance/ http://www.infosecurity-us.com/view/5055/the-black-art-of-it-forensics-/ What makes a good digital forensics specialist? Steve Gold looks at some of the latest applications and investigates how the IT forensic investigator’s role has evolved in order to comply with changing customer priorities Fri, 06 Nov 2009 00:00:00 GMT http://www.infosecurity-us.com/view/5055/the-black-art-of-it-forensics-/ http://www.infosecurity-us.com/view/4893/license-to-hack-ethical-hacking/ Ethical hacking seems to be a contradiction in terms, but what better way of making enterprises pay attention to their security flaws, than by acting like criminals? William Knight investigates Fri, 30 Oct 2009 00:00:00 GMT http://www.infosecurity-us.com/view/4893/license-to-hack-ethical-hacking/ http://www.infosecurity-us.com/view/4756/securing-a-very-mobile-board-automatic-backup-of-laptops/ As mobile working proliferates, boardroom staff is hitting the road with their laptops. Largely unconcerned with backing up their all important data, IT managers back in the office need to automate and secure this process. Steve Gold looks at how to secure a very mobile Board Mon, 26 Oct 2009 00:00:00 GMT http://www.infosecurity-us.com/view/4756/securing-a-very-mobile-board-automatic-backup-of-laptops/ http://www.infosecurity-us.com/view/4573/finding-your-way-an-overview-of-industry-qualifications-and-associations/ The proliferation of information security qualifications, standards and membership associations has reached a level whereby a degree of confusion is understandable. Peter Drabwell introduces some of the qualifications and associations out there Thu, 15 Oct 2009 00:00:00 GMT http://www.infosecurity-us.com/view/4573/finding-your-way-an-overview-of-industry-qualifications-and-associations/ http://www.infosecurity-us.com/view/4171/telcos-dialing-into-managed-security/ Back in the day, telecommunication companies focused purely on voice calls. Then, data services and broadband access became common. The latest generation of services focuses on managed security, says John Sterlicchi – and it could revolutionize the industry Fri, 25 Sep 2009 00:00:00 GMT http://www.infosecurity-us.com/view/4171/telcos-dialing-into-managed-security/ http://www.infosecurity-us.com/view/4028/nine-lives-selfmodifying-malware/ As the Conficker worm proved when it first appeared in October 2008, there’s more to a piece of malware code than meets the eye, especially when it is self-updating. But can self-updating also mean self-modifying? Steve Gold investigates whether an IT security manager’s nightmare has become a programming reality Fri, 18 Sep 2009 00:00:00 GMT http://www.infosecurity-us.com/view/4028/nine-lives-selfmodifying-malware/ http://www.infosecurity-us.com/view/3902/why-physicists-choose-information-security/ There appears to be no such thing as a ‘typical’ IT or information security career, and the discipline is accustomed to benefitting from transferable skills that newcomers bring from past experience and careers. Peter Berlich looks at why the information security industry is attracting a high number of qualified individuals from fields like IT, engineering and sciences Thu, 10 Sep 2009 00:00:00 GMT http://www.infosecurity-us.com/view/3902/why-physicists-choose-information-security/ http://www.infosecurity-us.com/view/3770/running-an-organization-effectively-while-still-maintaining-security/ Today’s CISO needs a range of skills in order to market the security effort effectively to the rest of the business. The (ISC)2 US government advisory board executive writers bureau explores some strategies that can help ensure support from the rest of the organization Fri, 04 Sep 2009 00:00:00 GMT http://www.infosecurity-us.com/view/3770/running-an-organization-effectively-while-still-maintaining-security/ http://www.infosecurity-us.com/view/3404/social-networking-a-risk-to-information-security/ As the popularity of social networking sites continues to mount, it becomes increasingly important to consider the information security risks posed in the context of a wider data loss prevention and reputation management strategy. Cath Everett reports Thu, 20 Aug 2009 00:00:00 GMT http://www.infosecurity-us.com/view/3404/social-networking-a-risk-to-information-security/ http://www.infosecurity-us.com/view/3099/a-blueprint-for-secure-intellectual-property/ Protecting intellectual property (IP) is imperative for any business. Providing a unique business model will encourage revenue, and keeping selected information from ambitious soon to be ex-employees should help to stave off the competition. Add a recession to the mix, complete with unscrupulous tactics, legal grey areas and an increase in redundancies, and the brewing threats might just boil over. Rob Stringer looks into the not-so-secret formula for keeping intellectual property secure Fri, 07 Aug 2009 00:00:00 GMT http://www.infosecurity-us.com/view/3099/a-blueprint-for-secure-intellectual-property/ http://www.infosecurity-us.com/view/3009/is-patient-data-privacy-on-its-sickbed/ As we stand on the cusp of a massive healthcare modernization program, we face increasing challenges over healthcare data privacy. Danny Bradbury explores what’s happening in the US from a technological perspective, and what it means for our sensitive data Mon, 03 Aug 2009 00:00:00 GMT http://www.infosecurity-us.com/view/3009/is-patient-data-privacy-on-its-sickbed/ http://www.infosecurity-us.com/view/668/rfid-coming-to-a-town-near-you/ RFID security may still be in its infancy, but, as Steve Gold discovers, the technology is rapidly becoming pervasive and an integral part of the everyday IT security landscape, despite significant teething problems Sat, 01 Aug 2009 00:00:00 GMT http://www.infosecurity-us.com/view/668/rfid-coming-to-a-town-near-you/ http://www.infosecurity-us.com/view/2606/watt-matters-the-smart-grid-and-the-information-security-industry/ The IT and information security industries need to pay more attention to the electricity grid in the near future as more and more smart grids are set up with two-way communication systems. Simon Perry, principal associate analyst at Quocirca, explains why Mon, 20 Jul 2009 00:00:00 GMT http://www.infosecurity-us.com/view/2606/watt-matters-the-smart-grid-and-the-information-security-industry/ http://www.infosecurity-us.com/view/2519/ai-superbots-threaten-information-security/ The development of virtual servers and cloud computing has brought with it a new information security problem - artificially intelligent (AI) superbots. Steve Gold explains what can be done to defend against this totally new genre of information security threats Tue, 14 Jul 2009 00:00:00 GMT http://www.infosecurity-us.com/view/2519/ai-superbots-threaten-information-security/ http://www.infosecurity-us.com/view/2444/tightening-the-purse-strings-on-information-security/ As the recession continues to chew into information security budgets, and cyber criminals see increased opportunity for looting, CIOs must ensure that defenses remain strong and affordable, even if this means a little bargaining. Stephen Pritchard looks at how organizations can negotiate the rough seas ahead. Mon, 06 Jul 2009 00:00:00 GMT http://www.infosecurity-us.com/view/2444/tightening-the-purse-strings-on-information-security/ http://www.infosecurity-us.com/view/2348/the-pci-paradox-why-pci-dss-isnt-preventing-data-breaches-/ PCI DSS has been criticized as being both too prescriptive and too vague. The standard’s effectiveness has come under scrutiny once again as PCI compliant organizations have suffered huge data breaches in recent times. Danny Bradbury looks at the standard to find the root of the problem Fri, 26 Jun 2009 00:00:00 GMT http://www.infosecurity-us.com/view/2348/the-pci-paradox-why-pci-dss-isnt-preventing-data-breaches-/ http://www.infosecurity-us.com/view/2310/using-information-security-to-protect-critical-national-infrastructure-energy-sector-is-hackers-biggest-target-/ The oil and gas industries are natural targets for cyber-criminals due to sensitive data and very deep pockets. With the introduction of newer IT technologies, such as wireless and even social networking, the jobs of the information security teams are not getting any easier. John Sterlicchi reports Wed, 24 Jun 2009 00:00:00 GMT http://www.infosecurity-us.com/view/2310/using-information-security-to-protect-critical-national-infrastructure-energy-sector-is-hackers-biggest-target-/ http://www.infosecurity-us.com/view/2187/information-security-goes-green/ Green IT has gone mainstream. The last year has seen corporations such as Citigroup establishing their environmental credentials by opening green data centers. But how do the separate disciplines of green IT and information security come together? Robin Arnfield reports Mon, 15 Jun 2009 00:00:00 GMT http://www.infosecurity-us.com/view/2187/information-security-goes-green/ http://www.infosecurity-us.com/view/2062/new-data-integrity-attacks-on-the-block-/ While the information security world has had its attention fixed on data loss prevention since the TJX breach in early 2007, it has failed to acknowledge the rising issue of data integrity attacks. Sarb Sembhi investigates a threat that he predicts will soon take the industry by storm. Mon, 08 Jun 2009 00:00:00 GMT http://www.infosecurity-us.com/view/2062/new-data-integrity-attacks-on-the-block-/ http://www.infosecurity-us.com/view/1969/virtualization-virtually-a-commodity-/ Virtualization is a welcome medicine for many of IT's irritating symptoms. But is there a risk that basic information security hygiene will suffer as a result? William Knight investigates Mon, 01 Jun 2009 00:00:00 GMT http://www.infosecurity-us.com/view/1969/virtualization-virtually-a-commodity-/ http://www.infosecurity-us.com/view/1868/outsourcing-information-security-could-be-a-risky-business/ Over the past two decades, outsourcing and offshoring have become central to the business strategy of many organizations. The ongoing race to cut costs has resulted in mass migrations of whole industry sectors from low-cost regions to lower- cost ones, benefitting one and often distressing another - and the information security industry is no exception. Krag Brotby reports. Fri, 22 May 2009 00:00:00 GMT http://www.infosecurity-us.com/view/1868/outsourcing-information-security-could-be-a-risky-business/ http://www.infosecurity-us.com/view/1804/information-security-and-the-stock-market/ The financial system is considered part of the critical national infrastructure as far as the USA is concerned. Danny Bradbury asks what steps are being taken to protect the stock market, and the companies that use it? Mon, 18 May 2009 00:00:00 GMT http://www.infosecurity-us.com/view/1804/information-security-and-the-stock-market/ http://www.infosecurity-us.com/view/847/us-standards-drive-canadian-information-security/ An absence of legislation and the presence of the laissez-faire attitude has resulted in Canada being rather lax when it comes to information security compliance. Robin Arnfield looks at how US standards are driving the Canadian information security marketplace Sun, 01 Mar 2009 00:00:00 GMT http://www.infosecurity-us.com/view/847/us-standards-drive-canadian-information-security/ http://www.infosecurity-us.com/view/663/the-reinventing-valley-/ Silicon Valley, home to some of the world’s most talented IT security professionals, and housing many of the IT security market’s biggest players, is a hub of innovation. But the Valley hasn’t always been famed for its offerings in IT technology, and with bio-tech sweeping the Valley as the next big thing, it may soon re-invent itself once more. Eleanor Dallaway visited the Bay Area to talk to the people that are witnessing this evolution first-hand… Sun, 01 Feb 2009 00:00:00 GMT http://www.infosecurity-us.com/view/663/the-reinventing-valley-/ http://www.infosecurity-us.com/view/659/look-after-your-scada-heart-/ Critical national infrastructures such as the National Grid, water and other utility networks have SCADA technology at their heart, but how are these systems protected against hacker, malware and terrorist attacks? Steve Gold spoke to the major players in this important, but little-understood, side of the security industry Thu, 01 Jan 2009 00:00:00 GMT http://www.infosecurity-us.com/view/659/look-after-your-scada-heart-/ http://www.infosecurity-us.com/view/661/keeping-sensitive-information-secure-when-staff-is-leaving/ Career loyalty is an endangered creature. Unlike our predecessors, today’s workforce is unlikely to stay committed to a job for five years, Career loyalty is an endangered creature. Unlike our predecessors, today’s workforce is unlikely to stay committed to a job for five years, let alone their entire lives. But with such a fluid stream of employees keeping human resources busy, and countless eyes being cast over company data, Rob Stringer investigates how sensitive information can stay faithful to its organization, even if its staff don’t... Thu, 01 Jan 2009 00:00:00 GMT http://www.infosecurity-us.com/view/661/keeping-sensitive-information-secure-when-staff-is-leaving/ http://www.infosecurity-us.com/view/662/too-many-cooks-/ Cyberthreats are increasingly a national security issue, and evidence suggests that the US is not adequately prepared for attacks across the network. Obama’s promise to appoint a Federal CTO is promising, but what else needs to be done to ensure that cyber-enemies are kept at bay? Danny Bradbury reports Thu, 01 Jan 2009 00:00:00 GMT http://www.infosecurity-us.com/view/662/too-many-cooks-/ http://www.infosecurity-us.com/view/851/up-up-and-away-/ Satisfying the regulatory frameworks associated with public sector defense projects is just one hurdle that the aerospace sector must overcome. Danny Bradbury looks at the sector’s challenges and finds that a single, cohesive security structure could be the answer Thu, 01 Jan 2009 00:00:00 GMT http://www.infosecurity-us.com/view/851/up-up-and-away-/ http://www.infosecurity-us.com/view/665/manufacturing-ip-securely/ Many manufacturers, ignorant to the value of their trade secrets, are leaving their intellectual property wide open to theft. John Sterlicchi reports. Fri, 01 Aug 2008 00:00:00 GMT http://www.infosecurity-us.com/view/665/manufacturing-ip-securely/ http://www.infosecurity-us.com/view/669/its-a-whole-new-ballgame/ Suzanne Hall, chief information officer of the Washington Nationals baseball team, talks to Greg Valero about the unique IT security challenges associated with opening a new ballpark in the nation’s capital Sun, 01 Jun 2008 00:00:00 GMT http://www.infosecurity-us.com/view/669/its-a-whole-new-ballgame/ http://www.infosecurity-us.com/view/700/a-little-less-conversation-a-little-more-security-please/ VoIP is inevitable. Even if your organization has not yet adopted the system, you will be making VoIP calls in one way or another before very long. But should we be concerned? William Knight investigates Sun, 01 Jun 2008 00:00:00 GMT http://www.infosecurity-us.com/view/700/a-little-less-conversation-a-little-more-security-please/ http://www.infosecurity-us.com/view/701/watched-in-the-workplace/ Employee surveillance is near ubiquitous, but it may be damaging both staff performance and morale, say Adam Joinson and Monica Whitty... Fri, 01 Feb 2008 00:00:00 GMT http://www.infosecurity-us.com/view/701/watched-in-the-workplace/ http://www.infosecurity-us.com/view/702/an-injection-of-new-ideas/ Securing IT means coping with Donald Rumsfeld’s ‘known unknowns’ – expected attacks whose nature is a surprise. Concepts from medicine, game theory and crowd sourcing may help, finds Danny Bradbury Fri, 01 Feb 2008 00:00:00 GMT http://www.infosecurity-us.com/view/702/an-injection-of-new-ideas/