Security and Risk Management Strategies Blog
 
Showing 1-9 of 9 records
1
 
Expand article

RSA Conference: Innovation becoming mainstream?

2008-04-17 09:06:55 by Burton Group in Security and Risk Management Strategies Blog
 
...information-centric security, end-to-end trust frameworks are needed, etc. Considering that RSA has led with technology in the past - after all it has one of the largest security expos in the country - this was quite a different outlook In many ways this was a good conference for Burton Group. The conference was, in a sense, validation of...
 
Tags: organization, companys security organization, security, metrics, security metrics, traditional security mechanisms, rsa, security vital signs, vital
 
 
 
 
Expand article

Is PCI compliance creating a false sense of security?

2008-03-28 09:44:50 by Burton Group in Security and Risk Management Strategies Blog
 
...information has been removed from their website (Im assuming while they reevaluate their transaction strategy and architecture) except for a news brief from the CEO, http://www.hannaford.com/Contents/News Events/News/News.shtml and the page containing their privacy statements, including their PCI compliance statement Hannaford Supermarkets...
 
Tags: pci compliance, compliant, pci compliant merchant, pci, pci compliance statement, merchant, pci compliant, pci dss, pci compliance measures
 
 
 
 
Expand article

Is PCI compliance creating a false sense of security?

2008-03-28 09:44:50 by Burton Group in Security and Risk Management Strategies Blog
 
...information has been removed from their website (I???m assuming while they reevaluate their transaction strategy and architecture) except for a news brief from the CEO, http://www.hannaford.com/Contents/News Events/News/News.shtml and the page containing their privacy statements, including their PCI compliance statement Hannaford Supermarkets...
 
Tags: pci compliance, compliant, pci compliant merchant, pci, pci compliance statement, merchant, pci compliant, pci dss, pci compliance measures
 
 
 
 
Expand article

Prospects Brightening for a Common Event Standard

2008-02-25 08:38:57 by Burton Group in Security and Risk Management Strategies Blog
 
...information event management (SIEM) system integration costs Reduced volume of event data and simplification of SIEM architecture Reduced need for (and increased effectiveness of) normalization Reduced cost of integrating new solutions with security management infrastructures and frameworks Lower cost of integrating event management and audit...
 
Tags: common event standard, standard, event standards space, space, standards, common event standards, standards deliberation, cee, cee web site
 
 
 
 
Expand article

Prospects Brightening for a Common Event Standard

2008-02-25 08:38:57 by Burton Group in Security and Risk Management Strategies Blog
 
...information event management (SIEM) system integration costs Reduced volume of event data and simplification of SIEM architecture Reduced need for (and increased effectiveness of) normalization Reduced cost of integrating new solutions with security management infrastructures and frameworks Lower cost of integrating event management and audit...
 
Tags: common event standard, standard, event standards space, space, standards, common event standards, standards deliberation, cee, cee web site
 
 
 
 
Expand article

The National Cyber Exercise

2008-02-06 13:29:21 by Burton Group in Security and Risk Management Strategies Blog
 
...Information Act request). They found a number of interesting things, many detailed here: news.wired.com . One delicious fact--which supports Burton Group's perspective that insiders are a significant danger--is that someone attacked the off-limits exercise control computers, most likely a participant. When exercises have embarrassingly bad...
 
Tags: cyber, national cyber exercise, exercise, exercise objective, security, exercise results, international, international government participants, security contact
 
 
 
 
Expand article

The National Cyber Exercise

2008-02-06 13:29:21 by Burton Group in Security and Risk Management Strategies Blog
 
...Information Act request). They found a number of interesting things, many detailed here: news.wired.com . One delicious fact--which supports Burton Group's perspective that insiders are a significant danger--is that someone attacked the off-limits exercise control computers, most likely a participant. When exercises have embarrassingly bad...
 
Tags: cyber, national cyber exercise, exercise, exercise objective, security, exercise results, international, international government participants, security contact
 
 
 
 
Expand article

The Fox and the Henhouse

2008-01-28 15:02:17 by Burton Group in Security and Risk Management Strategies Blog
 
...security business is the assumption that there are good guys. The risk management system MUST be designed to be secure even against attacks by insiders who have developed and operated it The only way to design a system to be secure against these insider attacks is to have strong attestation, transaction tracking, dual control, and supervision...
 
Tags: societe generale, societe generale begins, yesterday societe generale, societe generale appears, risk management lessons, risk management, risk management personnel, plain vanilla futures, apparently
 
 
 
 
Expand article

The Fox and the Henhouse

2008-01-28 15:02:17 by Burton Group in Security and Risk Management Strategies Blog
 
...security business is the assumption that there are good guys. The risk management system MUST be designed to be secure even against attacks by insiders who have developed and operated it The only way to design a system to be secure against these insider attacks is to have strong attestation, transaction tracking, dual control, and supervision...
 
Tags: societe generale, societe generale begins, jerome kerviel, kerviel, yesterday societe generale, apparently, bank apparently, bank, prevent kerviel
 
 
 
 
 
Showing 1-9 of 9 records
1
 
BROWSE CATEGOR