SecurityRatty: tag: preparation

CISA and CISSP Preparation

2008-07-31 13:14:07 by Erik T. Heidt in Art of Information Security

...preparation tips and insights for the CISA and CISSP certifications. I hold both of these certifications, and passed them both on the first attempt using very different preparation approaches. I took the CISA first, and based on a few lessons learned, I radically changed my preparation plan for the CISSP FYI, the official preparation...

Thoughts on ISO 27005

2009-01-06 17:10:59 by Alex in RiskAnalys.is

...Preparation of a business continuity plan Preparation of an incident response plan Description of the information security requirements for a product, a service or a mechanism This is all kind of backwards to me. An ISMS, BCP, or IRP are not *reasons* for risk management. Rather the management of risk is a reason to have an ISMS, BCP, or IRP...

Tags: risk, risk based, risk estimation, actual management, estimation, management, executive management, risk management, portfolio risk

My 2008 Security Predictions!

2008-01-09 15:42:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...preparation to the US elections. Maybe another "chad story", but with an "e-" added to it? Fun, fun, fun Full disk encryption becomes popular = no. In fact, I predict that in 2008 encryption would be "the new firewall" - more and more people will hide from reality behind "we have encryption - we are safe now!" (check out my piece on...

Tags: security, security predictions, broader information security, information security, smb security, virtual security appliances, security market, security solutions, security software

Missing memory stick turns up five months later

2008-01-23 16:44:36 by Evan Francen in The Breach Blog

...preparation for a scheme providing eye tests for more than 10,000 people across Greater Manchester The data stick contains encryption software but this had not been activated, meaning anyone could access the information It is understood that the information on the memory stick relates to patients of Specsavers at 17 The Birtles in...

Tags: information security, information, information security assessments, memory stick, security, specsaver diabetic patients, patients, computer memory stick, manchester patients

Fears that Bhutto assassination will further destabilize Pakistan and the region

2007-12-29 17:45:00 by John Sexton in The Bullet Proof Blog

...Preparation and knowledge is the key. Be informed and be prepared Visit Sexton Executive Security at www.sextonsecurity.com

Tags: bhutto, abundant knowledge, knowledge, assassination, pakistan, local knowledge, executive protection team, benazir bhutto, political scene

"Crawling" Toward SDL

2008-03-06 22:13:00 by sdl in The Security Development Lifecycle

...preparation or planning. As I help non-Microsoft companies implement SDL into their development lifecycles, this "crawl" phase toward full adoption of SDL is very important. Usually some person in an organization picks up on the principles of SDL and is ready to roll them out immediately. However, that person usually is faced with competing...

Tags: sdl, security, perform security analysis, application security, application, applications security, security issues, issues, non-microsoft sdl engagements

Are you attending RSA Europe 2007 ?

2007-10-13 17:36:56 by Erik T. Heidt in Art of Information Security

...preparation of the document itself, we will also discuss strategies for using the Quick Business Case to develop a communications plan to validate your current ideas, learn more, and build consensus for the business case. The Quick Business Case is not intended to replace a full Business Case or Business Plan, but is a tool to document an...

Tags: business, quick business, six-part presentation, presentation, rsa europe, information security, information security initiative, business plan, innovation

Defend against targeted attacks - Part 2

2008-04-10 10:51:23 by Editor in Adventures in Security

In this second and final installment, weâre examine how to look for and remediate potential attack paths; attack paths that might only make themselves known during focused and aggressive attack preparation

Tags: potential attack paths, attack paths, aggressive attack preparation, final installment, examine

The RSA Conference

2008-04-22 06:35:59 by schneier in Schneier on Security

...preparation -- customers care less about details and more about results. Technological innovations become something the infrastructure providers pay attention to, and they package it for their customers No one wants to buy security. They want to buy something truly useful -- database management systems, Web 2.0 collaboration tools, a...

Tags: non-security companies, companies, end-user security industry, security industry, information security conference, information security, automobile companies, security companies, security

The RSA Conference

2008-04-22 06:35:59 by schneier in Schneier on Security

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo