CSO

Keep your data safe in a dynamic datacenter.

Long awaited and needed secure software development certification

Given the evolving penalties associated with security breaches, the need for effective security training has grown. This blog post explores the inclusion of business analsyst in the creation of a customized training curriculum.

99 percent of records compromised from servers and applications

Don't be swayed by cloud-related FUD. Educate yourself and your team, assess risk, and make a decision based on business value.

Key leaders within both the information security and cloud computing industries announced on March 31st the formation of the Cloud Security Alliance, to be formally launched at the RSA Conference 2009, in San Francisco on April 21, 2009. The Cloud Security Alliance is a not-for-profit organization with a mission to promote the use of best practices for providing security assurance within Cloud Computing, and to provide education on the uses of Cloud Computing to help secure all other forms of computing.

This represents both the immaturity of our profession and the highly complex nature of information security while challenging the concepts that many professionals adhere to – that ISO27001, CobiT, COSO, FRAP, OCTAVE, etc., are frameworks when in fact there are just a piece of the overall framework pie.

Companies moving from instructor-led training to CBT?

Information's increasing propensity to move out of the data center is no reason to shirk responsibility for its protection.

We don’t know what we don’t know
We know of some things we don’t know
The company really seems like it doesn’t want to know