SecurityRatty: The Forrester Blog For Security & Risk Professionals

More Prognostications for 2010

2009-12-24 12:52:41 by John Kindervag in The Forrester Blog For Security & Risk Professionals

...security business. I suspect that businesses will need to regroup and think about their security spend again next year. Companies will probably remain gun-shy and hold budgets close to their vests. This could set up a shootout between increasing security threats and the desire to continue to control costs. Who will win? Your thoughts Happy...

Tags: security business, security, security threats, hold budgets close, john kindervag, forrester colleagues, economic concerns, shamus mcgillicuddy, happy holidays

Security Predictions For 2010

2009-12-24 12:43:28 by Jonathan Penn in The Forrester Blog For Security & Risk Professionals

...security standards emerge. By the end of 2010, well see a framework emerge for establishing a well defined set of technology, practices, and processes, organized into different levels of trust. Ultimately, adherence to these specifications will need be certified by third parties. The effort wont be complete, but it will be underway. Look to...

Tags: security, security services, security services expands, concerns, security concerns, security vendors, email security, security vendor, security priorities

The Story of the Risk Managers Increasing Value Continues...

2009-12-18 17:22:46 by Chris McClean in The Forrester Blog For Security & Risk Professionals

A few months ago I wrote about the rising visibility and responsibility of risk management professionals , linking to articles about the growing demand for risk training and talent.Along that train of thought, Iwas just able to get to this months edition of Risk Management , which along with a great photographic review of the last year in risk...

Tags: risk, risk management professionals, risk management, ago risk management, organizations risk, risk oversight, policies, compensation policies, risk experts

Hacking the In-Human Drone

2009-12-17 15:37:00 by John Kindervag in The Forrester Blog For Security & Risk Professionals

...information they need to evade or monitor U.S. military operations According to the article, the military has been aware that this type of attack was posssible for some time: "The potential drone vulnerability lies in an unencrypted downlink between the unmanned craft and ground control. The U.S. government has known about the flaw since the...

Tags: video stream, video, video feed, similar software, software, wall street journal, military, breach key weapons, military operations

Facebook's new privacy settings

2009-12-17 11:47:27 by Chenxi Wang in The Forrester Blog For Security & Risk Professionals

...information visible by default to Everyone. If you didnt actively manage your privacy settings through this new migration, some of your information, such as Family and Relationship, Education and Work, and your posts will be left visible to everyone, regardless of what your previous privacy settings were Another puzzling thing is that...

Tags: settings, privacy, facebooks privacy settings, previous privacy settings, entire privacy menu, menu, facebook privacy, privacy settings, facebook

Cloudy with a chance of non-compliance

2009-12-14 14:46:33 by Chenxi Wang in The Forrester Blog For Security & Risk Professionals

...security and privacy, is a big topic when firms consider cloud services. I recently did a Forrester Webinar on the topic of compliance for cloud computing. You can access the recording here: http://www.forrester.com/cloudsecuritywebinar . This blog entry is a recap of the Webinar In terms of compliance for cloud services, there are four...

Tags: party, third-party audit, compliance, cloud providers operations, cloud providers, third-party resources, third-party backup service, data, providers data breachincident

Transparency and compliance . . . US Congress votes on financial oversight, and the OECD unveils ideas for new see-through financial markets

2009-12-11 13:37:30 by Chris McClean in The Forrester Blog For Security & Risk Professionals

Today the US House of Representatives will vote on a bill bringing broad changes to financial regulations , which most experts expect will pass, pushing matter to the Senate As the debate continues between whats best for businesses and consumers as we look for economic recovery, a few of the amendments expected to come to a vote today involve...

Tags: transparency, market transparency, compliance, risk assessment difficult, difficult, sarbanes oxley exemption, government accountability office, forrester report, report

A Shift In Security & Risk Research

2009-12-11 08:36:03 by Rob Whiteley in The Forrester Blog For Security & Risk Professionals

...information security and risk priorities and how we can better meet those needs. I must say, it was unlike any research project Ive undertaken at Forrester. Sure, we asked the normal questions like What is your role and responsibilities? and What are your top priorities? But I also had the chance to answer very atypical questions like Who do...

Tags: information security, information, security, additional information security, security teams held, security strategist, architects, security architects, security architect

One of the Heartland lawsuits dismissed

2009-12-10 17:38:39 by Jonathan Penn in The Forrester Blog For Security & Risk Professionals

...security staff. That calls for greater communication and accountability around security, which smells like GRC to me DataLossDB.org maps stock price showing when the data breach occurred. Here's the chart for Heartland . Stock price isn't always affected, even in big breaches. DSW stock kept rising after its breach of 1.4 million records. TJX...

Tags: data breach, breach, security staff, security, news article, heartland, jonathan penn, dsw stock, shareholder lawsuit

Hacking the Human Network

2009-12-07 15:21:43 by John Kindervag in The Forrester Blog For Security & Risk Professionals

...information All this high technology is great, but be aware that someone may be watching you. There are ways to encrypt these types of transmissions including third party controls and the Secure Real-time Transport Protocol (SRTP) . Thanks network TV for making all of us more aware of UC Security posted by John Kindervag

Tags: network, human network, video, video surveillance system, tools, security tools, security, inherent security flaws, network system

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo