SEARCH RESULTS
 
Showing 1-10 of 214 records
 
Expand article

Q&A with Doug McClure: What Makes BSM Successful?

2008-07-15 19:02:39 by Julia Lim in ScienceLogic
 
...experience to what I call BSM for the Military or Mission Services Management (MSM We had been taught over and over that extreme attention to the details of the mission at hand (aka the business) was the number one priority and that all of our technology, services, and applications existed for those Sailors and Marines on the other end (the...
 
Tags: management, service management database, management tools, service management mentality, business service management, business service, business service impact, mission services management, database
 
 
 
 
Expand article

Making Threat Modeling Work Better

The Article has images
2007-10-17 00:23:53 by sdl in The Security Development Lifecycle
...experience of the process and the background that informs it. This isnt a slam on them. I lack experience in the database design process, and I dont have years of experience to help orient me. So Id make mistakes designing a database, and someone who isnt a security expert may make mistakes in security. For example, someone might try to use...
 
Tags: threat, process, process helps ensure, developers threat model, database design process, security, trust boundaries, threat model, security experts
 
 
 
 
Expand article

Terror on the Internet - Conflict of Interest

The Article has images
2008-03-18 19:58:23 by HASH0x8471fd8 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...experience and third party research indicates that over 90% of the cyber jihadist communities/blogs are hosted by U.S based not owned companies. And with the lack of real-time intell sharing between the agencies themselves, the first who picks up the community will be responsible for its faith, literally. But in reality, preserving the...
 
Tags: cyber jihadist, cyber jihadist communities, novice cyber jihadists, jihadists, cyber jihadist forums, cyber jihadist sites, attract cyber jihadists, internet, cyber jihadists
 
 
 
 
Expand article

Why you nearly need a P.I. to help you hire a private investigator

The Article has images
2008-03-01 20:28:00 by John Sexton in The Bullet Proof Blog
...experienced company who nobody has heard of and who uses young inexperienced people to conduct the investigations, then the money that you thought you were saving could turn out to be a total waste Here is an example: Company A is run by a young ex-soldier who joined the army at 18 and separated from the military after four years of service....
 
Tags: local, professional associations local, local security company, company, illegal company, choose company, exspensive company, guards company, security company
 
 
 
 
Expand article

10 Myths About Life As An IT Security Professional

The Article has images
2008-04-25 23:08:41 by Craig Balding in Security Wannabe
...experience, you can get a *lot* further in the long term through a mix of explanation, persuasion, technical demonstration (look how easy that was to break into!), humour and relationship building. And sometimes, the policy is wrong and you have to big enough to admit it and fix it. One thing to note: in a crisis or other time sensitive...
 
Tags: security, company security policy, security policy, technical security skills, technical security, policy, security professional, platform specific security, cool
 
 
 
 
Expand article

Risk Management and Analysis Standards Update

2008-06-17 16:51:27 by Alex in RiskAnalys.is
 
...experience. A forum that is a vendor- and technology-neutral consortium with experience building standards that work to interoperate across organizational and industrial boundaries Second, it means that you have a nice reference point for people who want it. Defending the use of FAIR over some other analysis method got a little easier thanks...
 
Tags: risk management, risk management departments, risk management effort, standards, risk, risk management efforts, risk management issues, security standards, risk management standards
 
 
 
 
Expand article

Passport Canada web site suffers serious breach

The Article has images
2007-12-05 11:51:09 by Evan Francen in The Breach Blog
...experience, some common-sense, and a PC would have found this hole if it was their job. It is obvious that Passport Canada does NOT have "the best security people Whether it was that or something else, I don't know which is worse - that someone made an error that you wouldn't expect to see from a school kid, or that 'Passport Canada' didn't...
 
Tags: passport canada, information, personal information, passport application information, application, breach, passport application site, passport canada spokesman, significant security breaches
 
 
 
 
Expand article

Review of My 2007 Security Predictions: Too Wimpy

2007-12-23 15:46:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...experience a premature eclipse Status Check V : Yes, bingo!!! I am proud of this one, since it was pretty contrarian: NAC didn't become much clear and adoption reportedly slowed down. Small vendors scatter, larger ones repurposed NAC tools. NAC - in whatever shape or form - will become more common, but only after it sinks into the "trough of...
 
Tags: status check iii, status check, status check viii, security, security predictions, status check vii, check, predictions, status
 
 
 
 
Expand article

Common Criteria and answering the question 'Is it Safe'

2007-12-20 16:57:00 by sdl in The Security Development Lifecycle
 
...experience in the real world offers ample evidence that CC fails to meet customer (both government and private sector) needs and expectations for assurance that a given product does not contain implementation vulnerabilities that expose customers to risk. It has been our experience that customers typically dont care whether they are exposed...
 
Tags: criteria, fails, common criteria fails, common criteria, common criteria arguably, common, arguably, arguably deficient, security