Don’t Neglect Information Security

November 28, 2008 by ADMIN · 2 Comments

Feature By Kevin M Nixon, MSA, CISSP, CISM, ♦ ISR Master Security Editor
and Laura Wilson, JD, CISA candidate, ♦ ISR Corporate Liability Editor

“Most business teams don’t want to do the wrong thing, but many have not been given the information or tools to adequately understand the situation and make supportable decisions. Most contract and deal teams don’t want to do the wrong thing, but the old job functions have not been given the gravitas, training, or compensation structure to push back on proposals that carry unacceptable risk. It’s hard enough to protect this stuff during good times. With layoffs, cost-cutting, companies folding, projects changing hands, and unhappy workers bearing flash drives, keeping track of these information assets and who touches them is a huge challenge.”

Un-Common Knowledge

November 22, 2008 by ADMIN · 1 Comment

Feature By Kevin M Nixon, MSA, CISSP, CISM, ♦ ISR Master Security Editor

“Think about that. If 2 million records are stolen and sold for $2 per record, the “ID Thief” has made a cool $4 million off of what took you years of honest hard work to create. The same technology used to steal your information is often used to sell your information. Your data is often sold through large instant-message groups or via online auctions, both of which may only exist for a few hours or days to avoid detection by authorities.”

Reality to Palin: Anybody In There?

November 22, 2008 by ADMIN · Leave a Comment

Feature By Kevin M Nixon, MSA, CISSP, CISM, ♦ ISR Master Security Editor

“Now, think about the current state of the global economy. If publicly-traded Corporations use these services and do not disclose the risk in their Sarbanes-Oxley (SOX) disclosures to the Securities and Exchange Commission (SEC) they are committing a Crime and deserve the fines and deserve to serve the time in prison as stipulated by law. We hear calls for stiffer regulations, oversight and transparency, but; do we really know how much of our private information is “out walkin’ around” already?”

Wait - The Palin Story Gets Worse…

November 22, 2008 by ADMIN · Leave a Comment

Feature By Kevin M Nixon, MSA, CISSP, CISM, ♦ ISR Master Security Editor

“Once the Governor began transmitting information in an unprotected manner via her personal web-based email account, which was outside the State of Alaska’s highly secure and well protected network, there was no way to guarantee the safety and integrity of those date floating in cyber-space. In other words, there was no way for the Governor or other state employees to know if the information which was being transmitted was being intercepted and read by someone who was not authorized under the State’s Data Security Policies and Procedures or the Federal Data Privacy Laws.”