SEARCH RESULTS
 
Showing 1-10 of 46 records
 
Expand article

President's ID Theft Task Force issues strategic plan -- does it go far enough?

2007-05-02 00:00:00 by Shannon Kellogg in Speaking of Security, the RSA Blog and Podcast
 
...Strategic Plan on April 23rd in Washington, D.C. The Task Force , which is co-chaired by U.S. Attorney General Alberto Gonzales and Federal Trade Commission (FTC) Chairman Deborah Majoras, was established by an executive order from President Bush in May 2006. Attorney General Gonzales and Chairman Majoras released the plan in coordination...
 
Tags: plan, president, strategic plan, ftc, task force, national ftc forum, alberto gonzales, authentication, authentication issues
 
 
 
 
Expand article

Think of Guest Networking as a Strategic First Step Toward NAC

2007-12-06 19:02:04 by Posted By: Lawrence Orans, Research Director in IT Leaders - Security and Risk Management
 
...strategic NAC implementation. When you design a guest network, you should do so with the end goal of NAC in mind; that's the most cost-effective approach. You can read more in "Findings from the 'Security' Research Meeting: Go Beyond Guest Networks to Achieve NAC Benefits
 
Tags: nac, guest, nac takes, strategic nac implementation, guest networks, network, network access control, true nac solution, guest networkingnac distinction
 
 
 
 
Expand article

IT Risk Management vs. Information Security survey

The Article has images
2007-12-28 15:21:00 by Ryan Shopp in practical risk management
...strategic = risk) vs. (tactical = security). Another thing to realize is IT risk encompasses more then technical control monitoring/management solutions ( that is only 50% of the scope as discussed in my previous post) . IT Risk also spans people & processes (e.g., non-technical controls). Since that typically requires getting into process...
 
Tags: risk management, risk, risk management lead, security, strategic, strategic initiative due, risk encompasses, security prediction, prediction
 
 
 
 
Expand article

Building a Security Architecture Blueprint

2008-05-16 09:26:55 by Gunnar Peterson in 1 Raindrop
 
...strategic enterprise asset (in many cases it *is* the business), yet the typical enterprise approach to securing the information or even risk management, is rarely strategic. Last year, I wrote a Security Architecture Blueprint paper to describe one framework for putting a strategic context around information security program. The main idea...
 
Tags: security architecture, security architecture blueprint, security, security architecture capabilities, blueprint, information security program, information, post, grc post
 
 
 
 
Expand article

Evolution of IT Security to Risk; driving IT GRC acceptance?

2008-04-24 21:32:00 by Ryan Shopp in practical risk management
 
...strategic risk centric in culture. Tim Wilson over at Dark Reading just put out this great write-up yesterday titled; Market's Message to Security Pros: Adapt or Die snip the question now is not how precarious the security manager's job is, but what it may evolve into, Schmidt observed. "As it becomes more about risk, security is not...
 
Tags: risk, chief risk officer, grc, security, strategic risk centric, risk officer, internal risk consultants, operational security tasks, grc solutions
 
 
 
 
Expand article

Happy Birthday Toddler - - CMDB just turned 2

The Article has images
2008-06-24 20:24:00 by David Link in ScienceLogic
...strategic areas Strategic Operational Costs Application performance Compliance - internal auditors doing analysis keep track of their findings and incorporate into your elements for data gathering Operational Metrics Changes unplanned (typically 80% unplanned or emergency Changes withdrawn (how many changes were withdrawn / roll back...
 
Tags: cmdb, cmdb success, cmdb tools, framework tools, fancy framework tools, successful cmdb implementation, deploy, deploy tools, tools
 
 
 
 
Expand article

Cyber espionage something to worry about?

2007-12-14 15:48:00 by Khalid Kark in Security & Risk Management
 
...Strategic Command (USSTRATCOM) and currently Vice Chairman of the Joint Chiefs of Staff, testified before The Commission that China is actively engaging in cyber reconnaissance by probing the computer networks of U.S.government agencies as well as private companies. The data collected from these computer reconnaissance campaigns can be used...
 
Tags: computer networks, government computer networks, networks, government, chinese government, american government agencies, cyber espionage, china, government agencies
 
 
 
 
Expand article

Speaking of Security Podcast #80

2007-10-12 00:00:00 by Podcast Producers in Speaking of Security, the RSA Blog and Podcast
 
Click here to listen/download (08:07 October is National Cyber Security Awareness Month . We celebrate by speaking with James A. Lewis , Director and Senior Fellow, Technology and Public Policy Program at the Center for Strategic and International Studies in Washington, D.C., about cyber security in the federal government and around the world
 
Tags: public policy program, international studies, federal government, senior fellow, cyber security, strategic, october, listendownload, world
 
 
 
 
Expand article

The Return on Investment for Securing Information

2007-08-13 00:00:00 by Sean Kline in Speaking of Security, the RSA Blog and Podcast
 
...strategic drivers. The difficulty in quantifying a business initiative, like extending services through new distribution channels via federation, may be relatively low. Quantifying traditional ROI metrics, on the other hand, may range in difficulty. The value of risk reduction may be more amorphous
 
Tags: traditional roi metrics, roi, strategic drivers, distribution channels, difficulty, investment, risk reduction, return, business initiative
 
 
 
 
Expand article

White House issues updated guidance to federal agencies for safeguarding sensitive information