Collaborative innovation can leverage the knowledge and experience of company stakeholders and their vendor relationships for competitive advantage and information assurance. Creation spaces can be used to stimulate this kind of collaboration.
As the Haitian people fight for subsistence, the world is responding with food and medical assistance. This tragedy wreaked havoc on a victim unsung by the news media – the telecommunications infrastructure. However, there is a ground-swell in the technical community targeting this need.
Regulatory Compliance – some see it as a necessary evil; a periodic checklist to be completed so business can continue. Others embrace it as a security panacea that mitigates risks with minimal impact on business processes and priorities. This series will examine continuous compliance and its value proposition.
PCI-DSS is not a Strategy! Unfortunately, many businesses have stormed onto the battlefield under the banner of compliance only to be subdued by the opponent. This article proposes steps towards strategic alignment of the tactics offered by PCI.
Topic(s): Data Protection | Identity Management | Business Continuity | Physical Security | Leadership
Selling security investments to business stakeholders continues to be a challenges to security professionals. This brief analysis discusses the Return on Investment approach vs a Value Statement approach to marketing a solution.
This is the first part of my podcast interview with Edward Schwartz, CSO of NetWitness. In this installment, Mr. Schwartz comments on regulatory compliance as a driver for security spending. He shines a light on how myopic focus on complaince can be dangerous to the organization.
Topic(s): Data Protection | Identity Management | Business Continuity | Physical Security | Leadership
SecurityBinge – a team composed of Chris Martin aka pr34ch, Tim Elrod aka ri0t, and Stefan Morris aka Janus – are forging a video podcast show addressing information security from the hackers’ perspective. SecurityBinge, according to its founders, “will have a community-driven focus in the delivery of its high quality video productions.”
According to Sun Tzu, the Tao is the Way – the context that defines how actions are perceived and valued. In a business context, corporate values and culture define the Tao. The success of any strategy depends on how it is supported by the Tao.
Topic(s): Data Protection | Identity Management | Business Continuity | Physical Security | Leadership
Gartner points out that encryption must be extended to all personal computers, not just company servers. Encryption not only addresses data leakage during personal and business use, but also when the hardware is retired. Disposed hard drives are often salvaged for the information they store. They recommend using strong encryption on files containing such information. Encryption Security Solutions' eSafe addresses this need.
