SEARCH RESULTS
 
Showing 1-10 of 45 records
 
Expand article

Needed: Agency CSOs

2008-06-26 12:49:33 by rybolov in The Guerilla CISO
 
...CIO and only have scope over what the CIO manages: data centers, networks, servers, desktops, applications, and databases Except for one thing: were giving todays Government CISO a catalog of controls that contain physical and personnel security. The party line that Ive gotten from NIST is that the CISOs need to work through the CIO to effect...
 
Tags: agency, todays government ciso, cio, ciso, cio manages, cisos, agency cso position, personnel security, responsibility
 
 
 
 
Expand article

DHS notified the Greenville County School District of compromise

The Article has images
2008-01-07 09:08:03 by Evan Francen in The Breach Blog
...cious activity involving Greenville County School District data. A malicious program had been installed on a computer used by the school district's benefits department that captured sensitive personal information belonging to certain school district employees Reference URL News Channel 7 Story WYFF Channel 4 News Story Report Credit News...
 
Tags: computer, benefits department computer, benefits department, benefits department accesses, department, school district, school district employees, employees, homeland security
 
 
 
 
Expand article

Unified threat management, demystified

2008-03-24 00:00:00 by HASH0x8b0389c in Network World on Security
 
Protecting the secrets of a uranium enrichment plant should be enough to keep any CIO very busy. But when Sarbanes Oxley mandated even tougher controls on databases containing key financial information, David Vordick, CIO of USEC, a $1.9 billion public company that operates a gaseous diffusion plant in Paducah, Kentucky, knew he was going to get...
 
Tags: key financial information, billion public company, uranium enrichment plant, gaseous diffusion plant, david vordick, tougher controls, cio, sarbanes oxley, secrets
 
 
 
 
Expand article

On trial - role of the CISO

2008-04-26 16:32:46 by Stuart King in Stuart King's Security and Risk Management Blog
 
...CIO. There was a serious point to the exercise though - those barristers were playing for real and the legal terminology was all correct. The sentences handed out to the CIO and CEO, who were found guilty under section 450 of the companies act of destroying documents, reflected what would have happened in real life. It shouldn't come as a...
 
Tags: role, ciso, role focuses, role encompasses, impotent ciso, security, information security, mock trial, view
 
 
 
 
Expand article

How to Sell Security

2008-05-26 05:57:29 by schneier in Schneier on Security
 
...CIO trying to convince senior management to invest in security or a security officer trying to implement a security policy with her company's employees It's also true that the better you understand your buyer, the better you can sell First, a bit about Prospect Theory, the underlying theory behind the newly popular field of behavioral...
 
Tags: security, loss, risky loss, risky larger loss, gain, risky larger gain, security purchase, directly, security directly
 
 
 
 
Expand article

The used car salesmen of NAC and the BNBB

The Article has images
2008-06-16 20:20:50 by HASH0x8b4f208 in StillSecure, After All These Years
...CIO of LVHHC. The second press release and case study is from NAC vendor X . It also claims that LVHHC uses this companies product product for NAC throughout the entire organization. They also have a quote from someone at the organization (OK, not the CIO, but someone). Who to believe? Does LVHHC have two NAC solutions? I doubt it. What to...
 
Tags: nac, nac solution, nac solutions, nac vendor, nac companies, car, prospective customer, customer, companies product product
 
 
 
 
Expand article

The used car salesmen of NAC and the BNBB

The Article has images
2008-06-16 21:03:36 by ashimmy in StillSecure, After All These Years
...CIO of LVHHC. The second press release and case study is from NAC vendor X . It also claims that LVHHC uses this companies product product for NAC throughout the entire organization. They also have a quote from someone at the organization (OK, not the CIO, but someone). Who to believe? Does LVHHC have two NAC solutions? I doubt it. What to...
 
Tags: nac, nac solution, nac solutions, nac vendor, nac companies, car, prospective customer, customer, companies product product
 
 
 
 
Expand article

Links List 7.25.08

2008-07-25 12:28:47 by Julia Lim in ScienceLogic
 
...CIO has been visiting different tech companies to learn about cutting-edge technologies that might be able to help soldiers in the battlefield. CIO Garing identified social networks and mashups as great technologies for smaller projects with potentially more immediate impact than the traditional years-long IT projects of the past. He should...
 
Tags: ipv6-only hosts, ipv6, ipv6 readiness, nat, special nat devices, financial analyst call, government agencies, ipv4 addresses, ipv4
 
 
 
 
Expand article

Some IPFW students exposed through malware

The Article has images
2007-11-29 13:26:49 by Evan Francen in The Breach Blog
...cious software. This breach primarily affects international students of the school Reference URL Purdue University Official Announcement News Channel 15, WANE.com Story The Journal Gazette News Story Report Credit News Channel 15, WANE.com Response From the sources cited above A security breach affecting a computer at Indiana...
 
Tags: purdue university, university, information, personal information, university department, university fort wayne, computer, vulnerable information, students
 
 
 
 
Expand article

Speaking of Security Podcast #71

2007-08-06 00:00:00 by Podcast Producers in Speaking of Security, the RSA Blog and Podcast
 
Click here to listen/download (06:06 Listen to how Bank of the West , the second largest bank based in California, has met the FFIEC guidance for providing multi-factor authentication to help further protect bank customers, their funds and personal information when banking online. The combination of deploying behind-the-scenes protection as well...
 
Tags: protect bank customers, bank, involves bank customers, cio donald duggan, provide strong security, bank based, paul joyal talks, visible site-to-user authentication, online