SecurityRatty: tag: competence

The Conscious Competence Security Model

2007-10-05 12:44:00 by Allen Baranov, CISSP in Security Thoughts

...Competence Learning Model (we'll get to exactly what it is) and I knew I had to blog about it and then I forgot but I was reminded of it again when I read this article by Richard Bejtlich He in turn is discussing CIO Magazine's Fifth Annual Global State of Information Security which is worth a read especially if you are in the Information...

Tags: information security field, information, information security spin, information security, security, security incident, computer security, conscious competence, model

The Importance of Trust

2008-09-16 19:46:00 by John Sexton in The Bullet Proof Blog

...competence. Particularly, it involves integrity (character) and your ability to do what you say you are going to do (competence Visit Sexton Executive Security at www.sextonsecurity.com

Tags: importance, business, business owner, integrity, involves integrity, utmost importance, competence, security profession, deaf ears

Privacy In the Cloud: Show Me The Money

2008-10-12 23:49:41 by Craig Balding in Cloud Security

...competence and economics The quick rebuttal to Richards view is this: the average computer user is not as smart as you . Control is not the same as competence. Control is about exercising choice, not about requiring everyone in the world to develop sufficient skills to protect complex hardware and software systems (aka their computer) against...

Tags: cloud, cloud providers, trust cloud providers, privacy, cloud providers actions, cloud applications, privacy costs money, privacy assurance levels, privacy assurance

Is Virtual Security Technology A Prime Target For Acquisition?

2008-05-15 02:12:08 by John Peterson in Security In The Virtual World

...competence to address the security challenges of virtualization and Chris Hoff blogged about it saying that the statement is a cop-out and that they should do more in securing their platforms. Alan Shimel also blogged on the topic and agreed with Hoff and I blogged about it agreeing with both Simon and Hoff To restate my position on it I...

Tags: security, security challenges, virtual security startups, virtualization vendors, virtualization, acquire security technologies, virtual security technology, reflex security, acquisition

Is Virtual Security Technology A Prime Target For Acquisition?

2008-05-15 02:12:08 by John Peterson in Security In The Virtual World

...competence to address the security challenges of virtualization and Chris Hoff blogged about it saying that the statement is a cop-out and that they should do more in securing their platforms. Alan Shimel also blogged on the topic and agreed with Hoff and I blogged about it agreeing with both Simon and Hoff To restate my position on it; I...

Tags: security, security challenges, virtual security startups, virtualization vendors, virtualization, acquire security technologies, virtual security technology, reflex security, acquisition

The Order of Diminishing Returns

2008-06-17 21:41:00 by RaviC in Musings on Information Security

...competence of employees and budget availability. Of course there are in-between states. I have considered only the extremes

Tags: complex security framework, firewall rules, firewall, security organizations, start-up, layers, start-up companies, provide continuous security, classic management term

The Virtues of Mature and Minimalist Cryptography

2008-07-31 13:30:24 by Editor in IEEE Security and Privacy

This installment of Crypto Corner takes a concise look at some of the issues responsible for why cryptography usually ends up looking bad, in practice, and fails to establish the right threat model, let alone realize it. Ultimately, this failure is largely due to a lack of cryptographic competence and the dreaded habit of...

Tags: crypto corner takes, issues responsible, threat model, cryptography, cryptographic competence, ultimately, due, concise, design

Security pros offered new 'CSSLP' qualification

2008-09-25 00:00:00 by HASH0x8472bc8 in Network World on Security

Software developers are to be offered a new qualification from next year, the CSSLP, designed to certify their competence in the increasingly troubled world of security design

Tags: security design, csslp, qualification, software developers, competence, world, increasingly

Information security in bad economy

2008-10-26 19:37:40 by RaviC in Musings on Information Security

...competence level in the long run. And this approach is better than letting people go, if you can pull this

Tags: information security, information security risks, risks, security, information security professionals, security manager, information security topic, security architecture, time

Andy Burnham and the decline of standards

2008-12-29 14:32:09 by Richard Clayton in Light Blue Touchpaper

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo