The Top 5 BYOS Tasks To Put On Your Business’s To-Do List

June 19, 2013
John Cupit

In a recent post, I discussed how Bring Your Own Service (or Software) is becoming an issue in many enterprise environments as organizations embrace the concept of Bring Your Own Device (BYOD). As with any transformative technology, it is still too early in the adoption cycle to have established industry-recognized best practices surrounding the security of BYOS.  However, there are five key tasks that should be addressed before supporting...

Pervasive Protection: Moving Security To The Carrier Cloud

June 18, 2013
ATT

With the threat landscape evolving rapidly, it is more important than ever for IT Managers to have confidence in their network security. As the first line of defense, your firewalls need real-time centralized management to properly enforce your security...

Security Amidst The Mobile Chaos

June 14, 2013
John Cupit

Bring Your Own Device (BYOD) has crossed the chasm from a bleeding edge to an early adopter technology.  According to IDC, more than half the companies they recently surveyed already let employees use their own smart devices within the...

The Power Of Financial Modeling

June 11, 2013
Dan Schmidt

Over the years, I have found that there are three opposing forces when it comes to the procurement of new technology investment. IT, the line of business, and the sourcing/supply chain. All organizations have a vested interest in these forces...

5 Ways We Overestimate Mobile Device Security

June 7, 2013
Velera Wilson

Mobile security has become a hyper-sensitive topic in many business conversations today. A CIO magazine article headline in January proclaiming “Mobile Attacks Top the List of 2013 Security Threats” echoes this sentiment and a report by...

5 Essential Questions To Ask Your Qualified Security Advisor

June 4, 2013
Chris Mark

In my experience working with hundreds of companies pursing Payment Card Industry Data Security Standard (PCI DSS) compliance, I have recognized a few trends.  Like all spectrums, two extremes exist. On one end of the spectrum...

Is Your CDN Vulnerable To Attack?

May 31, 2013
Sam Farraj

In just the past year, businesses of all types have been under attack. Some of these attacks have been very public; others have received less notoriety. But make no mistake, every major business segment was affected in some way, from...

Making Health Data Healthier

May 29, 2013
Geeta Nayyar

Data collection and its use and security are creating healthy discussions within the healthcare industry.  I recently conducted a Q&A session with Janice McCallum, managing director of Content Advisors and a leading Health IT thought...

Manage Big Data Like A Pro

May 28, 2013
Dave Johnson

Last time I checked, the AT&T global network was reportedly carrying over 43 petabytes of data on the average business day.  That’s what I call Big Data!  To put 43 PB into perspective, that is the digital equivalent of transmitting the U.S. Library of Congress every 12 and 3/4 minutes.  Or imagine a stack of typical CD-ROMs that would stretch over 55 miles high....

Understanding The PCI Compliance Spectrum

May 24, 2013
Chris Mark

The rules governing the PCI DSS can be complex and confusing . When coupled with the 250+ requirements, and their dependencies, it can be a daunting task to understand to which systems the standard applies, and which requirements apply under what conditions.  In training thousands of QSAs, merchants, and banks, I have developed a concept that helps...

An Assessor’s View

May 23, 2013
Sherri Collis

It has become impossible to avoid the headlines announcing that our data is being breached, from credit card information and social security numbers to other personal information. Each day, it seems there are reports of nefarious behavior happening in our Internet / cyber world environment. Due to this, there are five questions I challenge you to consider:...

Compliance Meets The Cloud

May 21, 2013
Barb White

The clock is ticking down to Sept. 23, 2013, the HIPAA final omnibus rule deadline. If you’re a hospital or health system, do you have “reasonable and appropriate administrative, technical and physical safeguards” in place to help protect your...

3 Tips To Avoid Being Hacked On Social Media

May 8, 2013
Mario Armstrong

A couple of weeks ago, a major news service’s Twitter account was hacked, and several fake tweets not only sent ripples through the media, they impacted stocks globally. While there’s a key lesson here about the importance of social media, this...

Are You In Business To Make Money Or Lose It?

April 26, 2013
Bindu Sundaresan

Are you in business to make money or lose it? For most people, the answer to this question is a no brainer! As a security professional, I truly believe that security can impact your bottom line. It is key to protecting your most vulnerable business asset – your data. If your business has anything worth protecting, whether it’s money, intellectual property, or a trusted...

Security’s Evolutionary Theory

April 25, 2013
Steve Hurst

Security and risk awareness have been part of the lives of humans from the very earliest days. At its core, security focuses on keeping things safe.  In a business environment, complete safety can restrict access and availability, and is therefore impractical.  Focusing solely on security, without balancing associated risk, is unrealistic, as businesses need to take certain risks to grow and be profitable. Let’s look at the history of...

Cyber Attacks And Security Breaches In Healthcare

April 24, 2013
Barb White

I read almost daily in the news about cyber attacks on U.S. banks, infrastructure, government agencies, and businesses. In fact, government agencies saw a more than 650% increase in cyber security incidents from 2006 to 2010, according to the Government Accountability Office (GAO). The GAO reports that a main reason for the increase is the failure of agencies to fully implement their IT security programs....

IT Risk And Security Reward Webinar

April 19, 2013
ATT

Every day corporate networks are faced with increasingly complex threats to IT security. But there’s an entirely new approach that can help you minimize risks. It’s called “Orbital Security”—and it just might save your company’s data. Orbital Security allows you to create an IT security strategy based on the relationships your company has...

Guarding Against DDoS Attacks

April 11, 2013
ATT

The cyber-threat landscape is in a constant state of evolution. Threats and attacks are increasing in frequency and complexity. Nowhere is that more evident than in the onslaught of Distributed Denial of Service (DDoS) attacks almost constantly assaulting organizations of all sizes. IT leaders looking to...

3 Imperatives For A Successful PCI Assessment

April 9, 2013
Sherri Collis

Have you ever tried to move an object by pushing a rope? How about herding cats? Tell me if this video reminds me of your workplace. Doesn’t make much sense, right?...

The School Of Hard KNOX

April 4, 2013
Maribel Lopez

At Mobile World Congress, Samsung announced an end-to-end secure Android solution that provides security hardening from the hardware through to the application layer called KNOX. This announcement is another indication of the evolving world of security that is being driven by the adoption of mobility and...

Top 10 Security Challenges For 2013

March 29, 2013
Steve Hurst

For security professionals 2012 was a very exciting year. We saw some major changes in information security attack strategies, known as vectors, and an increase in their public visibility. Advanced Persistent Threats (APTs) became more common and mobile and wireless security came into the forefront of our...