You can invest years in protecting the integrity and resiliency of your business...and then along comes something out of left field and you're ruined...just ask Indymac Bank.
Lawyers, guns and money - When do we get a comprehensive law?
I doubt that there has ever been a job considered as dull, boring, or monotonous as that of the auditor. There is no mystery, excitement, or wonder in auditing. Most of all, there is no smiling in audit. …or is there…
Following the firing of a TJX staffer for disclosing ongoing security failings at the retailer, should we protect those who disclose?
Everyone's talking about Virtual Alabama. Well maybe not everyone, but at least the Homeland Security and Emergency Management crowd that cares about new ways to leverage Google Earth to integrate geospatial applications, databases, and more. This is cool stuff with federal, state, and local governments getting onboard.
Recently, Hannaford's CEO announced that his company would "spend millions" to improve their security posture and prevent further data breaches.
Recently, my company's Marketing Director pointed everyone to a good article on software security. It talks about the biggest problem with insecure software being lack
Building on the Security Smackdown blog entry posted earlier this week, here are the 15 topics I asked Mary Ann Davidson o
On April 9, I participated in an excellent panel at the RSA Conference in San Francisco. The topic was Cyberstorm II, and although participants didn't discuss exercise scenarios or detailed action items, the discussion was interesting and received substantial press coverage. A top message: the importance of planning and communication across traditional and new boundaries.
How Dumb Do You Really Think We Are?


