Compliance, Privacy, IT and Security will need to determine the impact to their controls (or lack thereof) creating a punch list of countermeasures and finding out why the ones they have deployed are not working – and what the impact is to your regulatory, statutory and standards-based compliance programs;
Language is arguably the most powerful creation of the human species, the most successful mechanism to encode and transmit information across geographical, cultural and temporal boundaries. The humankind’s ability to create and use a system of symbols has been subject of the study, commentary and vivid debate for centuries.
This blog post is about language. What is the language of information security and how do we use it? How do infosec professionals talk their walk?
Founder of PCI Knowledge Base passed away unexpectedly.
From Cyber Jihad to Human and Computer Viruses - It has been a busy week
By Andrew Jaquith
Napolitano is making a great leap of faith that we are at that point in the Cyber Security maturation cycle and this leap is much like Evel Knievel’s jump across the Snake River.
The amount of labor and effort to run this operational task has worn thin. No longer am I interested in dealing with tape for anything but keeping my bumper on the old car with duck tape. Other than that, tapes and cartridges need to go the way of the floppy disk. Time to take them out back and shoot them!
By Khalid Kark
This is the first part of my podcast interview with Edward Schwartz, CSO of NetWitness. In this installment, Mr. Schwartz comments on regulatory compliance as a driver for security spending. He shines a light on how myopic focus on complaince can be dangerous to the organization.


