CSO

Cloud Security Alliance Webinar - May 28, 2009 - 6PM EST
http://www.brighttalk.com/webcasts/4116/attend

What is quite interesting about the Intoxilyzer 5000 is that there is an upcoming users conference in Las Vegas (great place to perform the clinical tests – I bet the users would volunteer; at least by 2AM each morning - CMI could offer discounts on the next purchase for volunteers). You should go just for the hotel prices since $79.00 at the Luxor is not to shabby.

I can only assume a good dose of paranoia puréed with a Napoleonic complex sprinkled with feelings of inadequacy stirred with a dash of Mighty Mouse (Here I come to save the day…) and a sprig of Bill the Cat was behind this effort.

Another new tool caught my eye this week that needs your attention - Cauldron.

Intel commissioned a study on the true cost of a lost or stolen laptop to an enterprise. The Ponemon Institute put the average price at nearly $50,000, with extreme cases nearing $1 million.

Dr. Ayman Zawahiri released a new video yesterday entitled Six Years Since the Invasion of Iraq - Thirty Years Since the Signing of a Peace Agreement with Israel

Find out more on Tuesday April 21 at RSA - 5:40PM

The Internet is the platform of choice for most extremist activities. This talk will take an in-depth look at extremist jihadi groups through their own sites, as a method of information dissemination, recruitment, product development, and propaganda using our encryption, our tools, and our virtual environments.

Key leaders within both the information security and cloud computing industries announced on March 31st the formation of the Cloud Security Alliance, to be formally launched at the RSA Conference 2009, in San Francisco on April 21, 2009. The Cloud Security Alliance is a not-for-profit organization with a mission to promote the use of best practices for providing security assurance within Cloud Computing, and to provide education on the uses of Cloud Computing to help secure all other forms of computing.

This represents both the immaturity of our profession and the highly complex nature of information security while challenging the concepts that many professionals adhere to – that ISO27001, CobiT, COSO, FRAP, OCTAVE, etc., are frameworks when in fact there are just a piece of the overall framework pie.

We don’t know what we don’t know
We know of some things we don’t know
The company really seems like it doesn’t want to know