SEARCH RESULTS
 
Showing 1-10 of 11 records
 
Expand article

Segregation of data protection duties

2007-12-17 10:12:06 by Jen Albornoz Mulligan in Security & Risk Management
 
...competent and wants to strike the right balance, Yahoo! has opened themselves up to additional business risks by placing the duty to protect information, and make money from it in the same person. Much like our legal system, data protection and data usage need two different people on opposing sides in order to effectively bring the issues to...
 
Tags: protect information, information, business, information yahoo collects, additional business risks, yahoo, chief privacy officer, business week recently, usama fayyad
 
 
 
 
Expand article

Vote but Verify

2007-09-07 19:56:11 by Liudvikas Bukys in Liudvikas Bukys
 
...competent than our representatives. Codifying the well-understood voter-verified paper audit trail as a requirement puts an immediate crimp in the shopping spree for fancy-looking machines that are rotten inside - a shopping spree that will continue if this law isnt passed, creating an ever-larger lump of sunk investment in pretty bad...
 
Tags: all-electronic systems, systems, all-electronic, paper audit trail, all-electronic paperless approaches, security geek consensus, research topic, consensus, nist
 
 
 
 
Expand article

A conspicuous contribution !

The Article has images
2007-12-04 17:40:46 by Richard Clayton in Light Blue Touchpaper
...competent. They show Government and the regulators that the industry is responsible and can explain why it works the way it does. They educate end-users to the best way of doing things and when theres a dispute with an abuse@ team that other ISPs will take the same dim view of their spamming as their current provider (which reduces churn and...
 
Tags: formal linx meetings, linx meetings, linx, linx council, meetings, conspicuous contribution, contribution, fiercely competitive industry, internet
 
 
 
 
Expand article

The Austin Project

2008-01-21 22:45:39 by RSnake in ha.ckers.org web application security lab
 
...competent people in the web security community visiting regularly. For them, some of the most complex topics I cover make perfect sense, and there is very little confusion. For the non-techies the technical posts are either misread or left unread. Either way, thats not good for the sake of learning A huge chunk of why I started this site was...
 
Tags: people, competent people, project, helps people focus, austin project, austin project web-page, security, web application security, site
 
 
 
 
Expand article

Church killer stopped by private security officer

The Article has images
2007-12-10 23:00:00 by John Sexton in The Bullet Proof Blog
...competent Police Officer would have handled the situation under the same circumstances The public and the citizens of Colorado Springs in particular, should be proud and grateful to have security officers of this calibre protecting them Visit Sexton Executive Security at www.sextonsecurity.com
 
Tags: officer, security officer, armed officer, law enforcement officer, security, church, brave security officer, security team, security officers
 
 
 
 
Expand article

Maslow's heirarchy of security posture?

The Article has images
2007-07-08 17:22:32 by RaviC in Musings on Information Security
...competent in handling security incidents effectively. They have no plans for what if bad stuff happens 4. Managed Security - These have incorporated dedicated staff to manage the lifecycle of security components. They have the well defined procedures to handle security incidents. There is a small budget allocated to the information security...
 
Tags: security posture, basic security posture, security, basic security, security practices, handle security incidents, security exists, security components, security program
 
 
 
 
Expand article

Virtualization Vendors Are Not In The Security Business?

The Article has images
2008-05-09 15:44:33 by John Peterson in Security In The Virtual World
...competent to try and secure virtual environments and therefore looks to 3rd party security companies to solve these concerns Listen to the podcast here Who are these 3rd party security companies? Well, there are a number of startup companies such as Montego Networks , Blue Lane , Catbird , Altor Networks as well as some of the big guys that...
 
Tags: security, security tools, deliver security tools, virtualization vendors, acquire, acquire security technology, security functionality, security controls, security concerns
 
 
 
 
Expand article

The Ethics of Vulnerability Research

2008-05-14 11:29:45 by schneier in Schneier on Security
 
...competent. To me, the question isn't whether it's ethical to do vulnerability research. If someone has the skill to analyze and provide better insights into the problem, the question is whether it is ethical for him not to do vulnerability research This was originally published in InfoSecurity Magazine , as part of a point-counterpoint with...
 
Tags: software security experts, software, vulnerabilities nurtures, vulnerabilities, exploitable vulnerabilities, vulnerabilities lie dormant, security vulnerabilities, computer, computer security experts
 
 
 
 
Expand article

Virtualization Vendors Are Not In The Security Business?

The Article has images
2008-05-09 15:44:33 by John Peterson in Security In The Virtual World
...competent to try and secure virtual environments and therefore looks to 3rd party security companies to solve these concerns Listen to the podcast here Who are these 3rd party security companies? Well, there are a number of startup companies such as Montego Networks , Blue Lane , Catbird , Altor Networks as well as some of the big guys that...
 
Tags: security, security tools, deliver security tools, virtualization vendors, acquire, acquire security technology, security functionality, security controls, security concerns
 
 
 
 
Expand article

An Open Letter to NIST About SP 800-30

The Article has images
2008-06-09 23:57:20 by rybolov in The Guerilla CISO
...competent people, but the unknowns are what will make or break your security program, and the only way that you can known the unknowns is to get multiple assessments aimed at risks outside of the control catalog However, if you change the risk assessment process to a catalog of controls gap analysis process, then weve completely lost risk...
 
Tags: risk management, risk management guide, risk management framework, risk assessment process, people,