SEARCH RESULTS
 
Showing 1-10 of 91 records
 
Expand article

Whats driving the MSSP craze - critical, but non-core functions are fair game for outsourcing

2008-06-13 03:29:37 by HASH0x8bb419c in StillSecure, After All These Years
 
...fair share of the resources in order to do the job. In any event, I think outsourcing security is not just a fad and is here to stay. It will continue to grow in the years to come Just a couple of other things though. Finance is an exception here. Security is a core function in finance, as the security of your money and information is core...
 
Tags: critical, non-core, core, critical activities, non-core activities, activities, security, mssp, outsource core
 
 
 
 
Expand article

UPDATES GALORE! or, THE PRONOUN WE MEANS YOU AND ME!

2008-08-13 15:24:17 by Alex in RiskAnalys.is
 
...FAIR and the movement towards a formal, open standard. Theres a couple of cool things going on in our little risk-world First, The Open Group Security Forum continues to move towards a formal adoption of FAIR WHAT DO YOU MEAN WE - YOU GOT A STANDARDS BODY IN YOUR POCKET OR SOMETHING Our meeting in Chicago a few weeks ago was great, but also...
 
Tags: risk, risk assessment methodologies, security forum, forum, magic-fairy risk, risk standards, fair, risk-world, fair similarly helps
 
 
 
 
Expand article

Risk Management and Analysis Standards Update

2008-06-17 16:51:27 by Alex in RiskAnalys.is
 
...FAIR and Risk Management, and RMI has a new website CISCO WEBINAR UPDATE First, Jacks Webinar with Cisco is Thursday . If you were lucky enough to get a slot, be sure to catch it. If you didnt get a slot but would like to still go, let me know (info at riskmanagementinsightdotcom - subject Webinar RISK MANAGEMENT STANDARDS AND FAIR Second,...
 
Tags: risk management, risk management departments, risk management effort, standards, risk, risk management efforts, risk management issues, security standards, risk management standards
 
 
 
 
Expand article

What Are You Managing Towards? (And On Disproving Risk Management)

The Article has images
2008-06-03 14:41:11 by Alex in RiskAnalys.is
...FAIR in his excellent article in the May 2008 ISSA Journal, Streamlining the Risk Management Process. Three quick things to anyone who has read it and is visiting our blog for the first time We dont believe that the goal of Quantitative Risk Analysis is to be precise. We believe the goal is to be accurate. Subtle but important difference FAIR...
 
Tags: management, risk management, term risk management, management focuses, management approach, risk management process, patch management, cost management, upper management
 
 
 
 
Expand article

DRM Scorecard Makes Me Wonder: The Media Industry and the TSA, Sadistic or Incompetent?

2007-08-02 08:19:00 by Eric Marvets in The Security Samurai
 
...Fair Use backups or sharing it on a P2P network Encryption is defined as the science and study of secret writing. What is it that the media industry is trying to keep secret? While we may want I Now Pronounce You Chuck and Larry and Whos Your Caddy to be some sort of secret internal referendum on the crap the entertainment industry regularly...
 
Tags: media industry, industry, media industry views, illogical behavior impedes, drm, behavior, drm scorecard, secret, secret internal referendum
 
 
 
 
Expand article

When Will the Media Industry Embrace the BORA Principle?

2007-03-22 10:06:00 by Eric Marvets in The Security Samurai
 
...fair use comparison between print and video (you can reprint a small section of a publication in another without permission, yet you cant post a short clip of the Daily Show on YouTube). The one issue I had with his article was referring to Apples FairPlay as a DRM system for music that has worked (its not the DRM, but rather the void in the...
 
Tags: credit card, credit, credit card industry, credit card fraud, industry, media industry, cut fraud, fraud, credit cards
 
 
 
 
Expand article

Show 009 - An Interview with Bruce Schneier

The Article has images The Article has audio podcast
2006-12-14 11:45:53 by rmacmich in The Silver Bullet Security Podcast
...Fair Use Exists - a look at the fair use doesnt exist argument BBC plans attacked for TV tax (March 14, 2006 Bruces suggestion for cheap wines: Loire wines , Provence Wines , Southern Rhone wines
 
Tags: security, security theater, software security, crypto-gram security podcast, bruce, computer security, physical security, property rights management, bruces wikipedia entry
 
 
 
 
Expand article

Vulnerability Events

2008-03-30 17:20:05 by JonesJ in RiskAnalys.is
 
...fair question (pun intended If youre familiar with FAIR you already know that we define two other event types Threat Events and Loss Events. Threat events occur when a threat agent acts against an asset. Loss events occur when loss results from a Threat Event (i.e., as happens when force exceeds resistance). The reason its important that we...
 
Tags: vulnerability, relative term, term, loss events occur, loss events, vulnerability events matter, loss, actual loss, relative term requires
 
 
 
 
Expand article

Building a Security Architecture Blueprint

2008-05-16 09:26:55 by Gunnar Peterson in 1 Raindrop
 
...fair amount of GRC blogohostility , fair enough, but the main point is not slamming GRC, just the overfocus on GRC and substituting misdirected marketecture for real world architecture Hoff got to the heart of the point of what i was saying - its about assets As I think about it, I'm not sure GRC would be something a typical InfoSec function...
 
Tags: security architecture, security architecture blueprint, security, security architecture capabilities, blueprint, information security program, information, post, grc post
 
 
 
 
Expand article

Another brick in the wall to limit blogging

The Article has images
2008-06-17 23:43:03 by HASH0x8b659fc in StillSecure, After All These Years