Bio
Steven F. Fox, CISSP is an Senior Information Security consultant. He holds a Masters in Business Information Technology from Walsh College, an NSA recognized Center of Excellence. He serves on the board of the Detroit ISSA chapter and is a columnist for the ISSA Journal. He is also the founder of SecureLexicon, a security advisory firm addressing the unique security concerns of nonprofit organizations. Listen to his podcast at www.securelexicon.com
Follow him on Twitter - http://twitter.com/securelexicon
Join his LinkedIn network - http://www.linkedin.com/pub/0/251/3a1
Latest Posts by Steven
From Obstacle to Ally - Repositioning the Security Team Pt 1
April 08, 2012
Information Security is broken at the relationship level. Business professional see the security team as an obstacle on the worst of days and as a cost-center on the best of days. It's time for action! This series explores common gripes from the business and ways we can act to change things.
Designing Security with Brand in Mind
February 04, 2012
Brand matters when it comes to security. The lack of consistency between risk management and corporate brand can lead to a loss of not only employee endorsement of security investments but also the trust of your internal and external customers. This article discusses a case study highlighting the...
Key Sessions at CISO Executive Summit 2011
December 03, 2011
The EC-Council will host a gathering of public/private sector information security executives and thought-leaders at the CISO Executive Summit 2011 on December 5-6 in Las Vegas. The agenda features panel discussions addressing issues that emerge from the intersection between technology, people, and...
Securing User Credentials On Mobile Devices
November 15, 2011
Your mobile device is an interface into systems that can store potentially sensitive information about you, your company or your employer. Given its ease of use and portability, one would expect to find unique, strong credentials to guard against unauthorized access to these resources. This...
Securing Mobile Data at the Application Layer
October 23, 2011
Data Security is one of the concerns addressed in the OWASP Mobile Security Project; a project focused on the application-level risks that face mobile devices. This installment will look at some of the threats to mobile data and recommended controls to mitigate the associated risks.
Promoting Security Policies Using Organizational Culture
September 08, 2011
Most of us refer to security policies in much the same way as we refer to our car manuals – when something unexpected happens. We know these documents have useful information. However, their utility is tied to situations where answers do not present themselves readily.According to Chris Noel,...
Previous Page
Recent Comments
Webcasts
- The CISO's Survival Guide to Securing Data
- Data Privacy and Protection in Production Environments: New Research from Ponemon Institute
- FireEye Advanced Threat Protection KnowledgeVault
- Five Tips to Consider in a Data Security Strategy for Smartphones and Tablets
- Moving Your Email to the Trusted Cloud
- Comprehensive Server Protection
White Papers
