SEARCH RESULTS
 
Showing 1-10 of 46 records
 
Expand article

Seven Habits of Highly Effective Security Plans [Part 3]

2007-09-21 09:27:00 by Allen Baranov, CISSP in Security Thoughts
 
...Proactive Please first read The Seven Habits of Highly Effective Security Plans [Part 1 Please first read the Seven Habits of Highly Effective Security Plans [Part 2 This is based on Stephen Covey's book The Seven Habits of Highly Effective People and in this post we look at how being proactive can help raise the general security of an...
 
Tags: information security risk, information, financial information, security, information security, effective, business, person business, people
 
 
 
 
Expand article

TRICARE breach affects 4,700 households

The Article has images
2007-12-20 12:15:59 by Evan Francen in The Breach Blog
...proactive steps to keep you informed Evan] I don't like the word "proactive" when using it in reference to a reaction. The notification is a reaction to a lack of proactivity. You dig Those who may have been potentially affected by this compromise will receive a notification letter The data was held on a Web application server that allowed...
 
Tags: tricare, information, personal information, code review, by-line code review, information security, tricare beneficiaries, beneficiaries, breach
 
 
 
 
Expand article

Seven Habits of Highly Effective Security Plans [Part 4]

2007-10-09 13:38:00 by Allen Baranov, CISSP in Security Thoughts
 
...proactive and making sure that you define your environment and how you will handle Information Security In the past Information Security was a matter of having whatever the box of the day was - firewall, anti-virus, IDS, etc etc. It was also having audits done and responding to their negative findings. And it was about hopefully detecting...
 
Tags: handle information security, information, past information security, voila- policy documents, policy, information security, policy documents, habits, plan
 
 
 
 
Expand article

SCSU web server becomes spam server and exposes personal information

The Article has images
2008-05-02 11:12:47 by Evan Francen in The Breach Blog
...proactive steps, along with a full security review of the university's Web server Evan] What is proactive in a response The University has undertaken a review of all files containing personal information on its Web server and there is no evidence to date that any of them have been compromised Evan] The University should undertake a review of...
 
Tags: personal information, information, evan personal information, web server, personal information storage, university, university system, personal, university immediately
 
 
 
 
Expand article

Axcess Financial reports stolen laptop to New Hampshire AG

The Article has images
2008-05-28 11:45:44 by Evan Francen in The Breach Blog
...proactive out of abundance of caution Evan] A display of proactive abundance of caution would be to encrypt laptops and apply tight controls around what information is allowed to be stored on them (among other things Because there is a possibility that your personal information could have been subject to unauthorized disclosure, we have...
 
Tags: axcess, axcess financial, axcess financial services, breach description, breach, worst breach notifications, information, personal information, hampshire
 
 
 
 
Expand article

Adaptive security from the Gartner IT Security Summit

2008-06-09 20:25:00 by Manu Namboodiri in Data Protection, Management and Leakage
 
...proactive approaches to security and how we could learn from the adaptive mechanisms of a biological system. Very interesting Most of it made sense - however, it seemed hard to see how we could build adaptive/proactive security systems just yet. We are still figuring out security based on signatures and we cant build them fast enough -...
 
Tags: security, security summit, security systems, security based, model based security, adaptive, security view, adaptive mechanisms, neil macdonald keynote
 
 
 
 
Expand article

Citizens Advice stolen laptop was encrypted

The Article has images
2007-12-13 13:37:02 by Evan Francen in The Breach Blog
...proactive decision to encrypt sensitive data on a laptop Good commercial versions of "whole disk" laptop encryption software will protect against slaving the hard drive to another computer (thus bypassing password protection) and provide a replacement logon GINA (thus providing reasonable protection against password cracking). I have had the...
 
Tags: laptop encryption, laptop encryption software, advice, encryption, encryption product, citizens advice, laptop, sought advice, personal data
 
 
 
 
Expand article

Ask the Auditor: Who is Responsible for Information Security?

2007-12-29 06:24:50 by Editor in Security Links
 
...proactive and effective against current and emerging threats. To provide this level of assurance, internal auditors also compare current organizational practices with industry practices to discern whether their organization is operating comparable to others Ensuring that information security systems and management are subject to audit and...
 
Tags: information, information security, information policy, information security risks, information assurance, information security governance, information security managers, information security management, assign information security
 
 
 
 
Expand article

Laptop stolen from Workers Compensation Fund auditor

The Article has images
2008-01-03 11:25:59 by Evan Francen in The Breach Blog
...Proactive. The bad thing about reactive security is that there are victims there is no indication that the information has fallen into the hands of identity thieves, "and now the only information on laptops is what anyone can get from a telephone book Victim Reaction WCF has failed to assure us that their procedures have changed to avoid...
 
Tags: store personal information, personal information, information, information security matters, workers, workers compensation fund, laptop, security, security tokens
 
 
 
 
Expand article

Reliability Vs. Security

2007-12-07 16:46:00 by sdl in The Security Development Lifecycle