SEARCH RESULTS
 
Showing 1-10 of 54 records
 
Expand article

Q&A with Doug McClure: What Makes BSM Successful?

2008-07-15 19:02:39 by Julia Lim in ScienceLogic
 
...establish a BSM roadmap that guides us in how well implement the BSM strategy in a more tactical manner, focusing on short term iterative quick wins and 30-60-90 day projects. For more of my thoughts on BSM strategy and roadmapping, see the following blog posts Elements of Business Service Management Part 3: Getting Business Service...
 
Tags: management, service management database, management tools, service management mentality, business service management, business service, business service impact, mission services management, database
 
 
 
 
Expand article

How to Audit a Log Server?

2008-02-05 18:31:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...establish that your logs will remain useful for investigations, forensics, possibly litigation (offensive and defensive) as well as other purposes, all the way to operational troubleshooting. Some of the regulations, such as PCI DSS do call for log protections (see Req 10 or, while we are at it, go read my PCI book chapter on logs[PDF Also,...
 
Tags: log server, protect logs c-i-a, logs, preserve computer logs, home-grown log server, protect, security audit, reasons, establish
 
 
 
 
Expand article

What's the Snag Behind the Spyware

2007-08-01 19:28:00 by jack in adware and spyware
 
...establish continuity of anonymity However, it is an establish fact that the PC functions as a "live" server that is open for any kind of information disseminations with or without the consent of the server; bottom lining the fact, there is always a risk for any transfer of any information even those covered by protection policies between the...
 
Tags: spyware, software, reputable piece software, anti-spyware program, helpful software agents, information data, information, system, computer system
 
 
 
 
Expand article

SDL Training

2008-05-29 15:22:00 by sdl in The Security Development Lifecycle
 
...establish a set of tools to estimate security defect density effectively, and establish a fair set of expectations, incentives, and consequences, or even decide what we should do if we had the data. We discovered some things, though. For example, based on what I observed (which should not be construed as rigorous research), it does not appear...
 
Tags: real behavior change, behavior, sdl, change peoples behavior, security, security guy, security defects, defects, security class
 
 
 
 
Expand article

Seven steps to managing IT Risk

2008-07-21 21:34:00 by Ryan Shopp in practical risk management
 
...Establish the responsibilities of risk managers with their areas of responsibility Identify and define the risks to which the business is exposed and what constitutes a risk event or "near miss" so that incidents can be mapped to specific risks Determine the threat level, and focus on those risks with the highest impact on performance...
 
Tags: risk, risk event, risk assessment, risk managers, operations risk profile, retain risk incident, specific risks, steps, risks
 
 
 
 
Expand article

Memo to Next President: How to Get Cyber Security Right

2008-08-07 15:45:00 by Bruce Schneier in Wired Security
 
...establish standards for critical infrastructure, spend money on enforcement, establish national standards for securing personal data and data-breach disclosure, and work with industry and academia to develop a bunch of needed technologies I could comment on the plan, but with security the devil is always in the details -- and, of course, at...
 
Tags: security, security standards, improvements, security improvements, information security, cyber security plan, research, government research, national security
 
 
 
 
Expand article

Memo to the President

2008-08-12 06:36:31 by schneier in Schneier on Security
 
...establish standards for critical infrastructure, spend money on enforcement, establish national standards for securing personal data and data-breach disclosure, and work with industry and academia to develop a bunch of needed technologies I could comment on the plan, but with security the devil is always in the details -- and, of course, at...
 
Tags: security, security standards, improvements, security improvements, information security, research, government research, cyber security plan, national security
 
 
 
 
Expand article

Misconceptions about outsourcing security

2007-12-13 14:05:54 by Khalid Kark in Security & Risk Management
 
...establish security processes and strengthen your operations before you outsource security. Outsourcing may help improve operational control, but the chances of success are increased if the firm has a clear understanding of the processes, expectations and deliverables Outsourcing security is the quickest way to get security controls...
 
Tags: security processes, establish security processes, security, processes, security controls, security managers cost, cost, security operations, security services
 
 
 
 
Expand article

The reason behind the "We're sorry..." message

2007-07-09 11:54:00 by Niels Provos in Google Online Security Blog
 
...establish that we are talking to a human user - and to continue searching. However, automated processes such as worms would have a much harder time solving the CAPTCHA. Several things can trigger the sorry message. Often it's due to infected computers or DSL routers that proxy search traffic through your network - this may be at home or even...
 
Tags: web servers, vulnerable web servers, message, google, worms, google displays, worms pdf, queries, detect anomalous queries
 
 
 
 
Expand article

KimsCrafts e-commerce breach affects 4,500

The Article has images
2007-12-14 16:08:39 by Evan Francen in The Breach Blog