SecurityRatty: tag: organizational

Is Risk Management a People Problem?

2008-03-10 15:45:47 by Alex in RiskAnalys.is

...ORGANIZATIONAL BEHAVIOR PROBLEM So if the specific act of secure is mainly in the hands of people (in ability to attack and/or defend), then, in my mind, Risk Management becomes an Organizational Behaviour problem. An organization, though made up of people, almost always acts differently than the whim of any one member. Let me offer that IRM...

Tags: risk management, risk, people, risk management issue, impacts people, security, security technology, risk tolerance, people lessons

Q&A with Doug McClure: What Makes BSM Successful?

2008-07-15 19:02:39 by Julia Lim in ScienceLogic

...organizational use. Trust me, youll need to justify your investment some time in the future Another trait of successful BSM implementations is that of the formal monitoring and management tools group has established some sort of database or knowledge repository that enables them to manage the business of IT management and monitoring if you...

Tags: management, service management database, management tools, service management mentality, business service management, business service, business service impact, mission services management, database

Here Comes Everybody Review

2008-11-25 07:39:13 by schneier in Schneier on Security

...organizational costs -- things so esoteric, so frivolous, so nonsensical, or just so thoroughly unimportant that no organization, large or small, would ever bother with them. Things that you shake your head at when you see them and think, "That's ridiculous Sounds a lot like the Internet, doesn't it? And that's precisely Shirky's point. His...

Tags: shirky, shirky notes, organizations, community, virtual community safe, organizations collapse, internet content, internet discourse falls, internet

EIC 2008: Takeaways from Europe's biggest identity event

2008-06-13 08:19:15 by Bill Nagel in Security & Risk Management

...organizational maturity. The need to implement IAM provides an opportunity to share information, define new policies and processes, and streamline existing ones. The CEO and CIO/CSO/CISO need to sit at the same table, commit to eliminating organizational silos, and devise a cooperative approach

Tags: identity, information, information risk management, user-centric identity, iam, iam implementation, effective information security, implement iam, holistic iam context

Hansei and the CISO

2008-09-16 17:47:47 by Alex in RiskAnalys.is

...organizational risk Are the Technology solutions I have in place effective, are we managing them effectively, and what sort of States of Knowledge could they provide me with (to make good decisions and execute upon them, from above This, for the CISO, is Hansei. The continuous management of it is Kaizen. Not to particularly pick on Jills...

Tags: risk management requires, risk management, risk, hansei, risk register, program, manage risk, manage, adrians program diagram

Integrating Event/Incident and Problem Management

2008-10-14 18:00:59 by David Link in ScienceLogic

...Organizational, Behavioral and Cultural Challenges required to take advantage of the opportunities that virtualization provides Incident and problem management processes and metrics must bridge organizational silos that have been the norm within IT. With virtualization, people have to work more closely together in the different silos than...

Tags: management, event management systems, event, management processes, management pieces, management systems, management integration, event management system, systems

Ask the Auditor: Who is Responsible for Information Security?

2007-12-29 06:24:50 by Editor in Security Links

...organizational practices with industry practices to discern whether their organization is operating comparable to others Ensuring that information security systems and management are subject to audit and review by qualified professional reviews and audits, corporate leaders advance the goal of overseeing the organizations information security...

Tags: information, information security, information policy, information security risks, information assurance, information security governance, information security managers, information security management, assign information security

5,000 Health Net employees affected by stolen laptop

2008-01-05 19:04:59 by Evan Francen in The Breach Blog

...organizational information security program I respect a CEO who speaks about information security matters, it shows that they recognize that the "buck stops" with them I am taking bets on how many mobile devices containing personal will be lost this year that were not encrypted. This is #5 on The Breach Blog in 2008 and we are only five days...

Tags: employees, health net employees, health net, company vendor, vendor, health net vendor, information, personal information, laptop

Reliability Vs. Security

2007-12-07 16:46:00 by sdl in The Security Development Lifecycle

...organizational challenges to getting it right. But after the talk, the discussion centered on a broader topic: is security more difficult to achieve than reliability? Afterwards, a gaggle of professors from five continents and practitioners from Saab, Ericsson, Microsoft, Cisco, IBM and Google debated the matter from the halls of the...

Tags: folks, reliability folks deal, reliability, reliability folks, security, bugs, reliability bugs, reliability analysis, software reliability

Cascade Healthcare Community donors affected by malware

2008-03-07 14:02:22 by Evan Francen in The Breach Blog

...organizational leader, he understands that he is ultimately responsible for the due care of information assets. I admire Mr. Diegel for addressing this situation personally We want to express our sincere apologies to those community members who have trusted us with their information for the inconvenience and worry this situation may have...

Tags: personal information vulnerable, personal information, cascade healthcare community, community, information, information assets, employee information, credit card informatio

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo