The 80/20 Rule for Information Security

February 17, 2010 by ADMIN · 1 Comment

From The Team at MicroSolved

MicroSolved, Inc. (MSI) has developed the 80/20 Rule of Information Security that proposes the concept that 80% of an organizations’ real information security comes from only 20% of the assets and effort put into the program. These 13 security projects will give your organization the most effective information security coverage for the least expenditure of time and resources. These projects, once completed, should allow CIO’s to create an effective, efficient, and standards-based approach to information security…

SyferLock GridGuard Live On Infosec Island

February 16, 2010 by ADMIN · Leave a Comment

Press Release

Infosec Island, the new community for IT and information security professionals, today announced that its new enhanced authentication service based on the SyferLock™ GridGuard™ solution, is now live. Deploying this technology provides Infosec Island members with the option to login with a very high level of security for confidential business, personal or security-related communications. SyferLock’s GridOne authentication is available on Infosec Island to all registered members, and membership is free.

How A Security Company Applies Security

February 16, 2010 by ADMIN · Leave a Comment

By Larry Ketchersid, Chairman and CEO at MediaSourcery

Similar to security assessments, network architecture designs and other projects, a development project, such as this one involves the exchange of confidential data, including in this case, intellectual property designs, requirements documents, test plans, code fragments and road maps. We could have chose to exchange these documents over email, or printed them out and sent them next day parcel post. Instead, we ate our own dogfood and utilized IslandPKI encrypted document and message transfer…

Afraid of the Cloud? Ask the Right Questions

February 11, 2010 by ADMIN · 2 Comments

By Greg George, Managing Partner of GTI Advisors

What if your vendor is acquired, are there assurances in your service agreement allowing you to opt out if you choose to – if so, will all your data be deleted? What if you vendor is acquired by a company based in a foreign country? Maybe the acquiring company ceo, also a peoples republic of china communist party official, will assure you your data has been deleted. All in all – right now, using SaaS simply comes down to a judgment call, what is in the best interest of your firms operations: ease of access, work flow and cost benefits vs. associated risks…

WireHead Security Partners With NCICU

February 2, 2010 by ADMIN · Leave a Comment

From PRWeb

WireHead SecurityTM, an information security services firm providing customers with solutions to strengthen internal security and risk management, today announced a partnership agreement with the North Carolina Independent Colleges and Universities (NCICU), under which member institutions can take advantage of discounted service pricing. NCICU is comprised of North Carolina’s 36 private, non-profit liberal arts, comprehensive, and research colleges and universities accredited by the Southern Association of Colleges and Schools.

Consider Outsourcing Your Network Security

January 26, 2010 by ADMIN · Leave a Comment

By Kenneth Leeser, President, Kaliber Data Security and Compliance

The number and types of external threats to a network are growing exponentially, and unless a company has a dedicated and highly specialized team devoted to network security, it’s hard to keep up with the rapidly changing threat landscape. After all, the threats of the Internet are the same for every company regardless of its size.

GAPP: Generally Accepted Privacy Principles

January 19, 2010 by ADMIN · Leave a Comment

By Kenneth Leeser, President, Kaliber Data Security and Compliance

The privacy principles and criteria are founded on key concepts from significant local, national, and international privacy laws, regulations, guidelines, and good business practices. By using GAPP, organizations can proactively address the significant challenges that they face in establishing and managing their privacy programs and risks from a business perspective. The following are the 10 generally accepted privacy principles…

InfosecIsland.com Network Acquires ISR

January 18, 2010 by ADMIN · 1 Comment

Press Release

Infosec IslandTM, the new online community designed especially for IT and network professionals who manage information security, risk and compliance issues, today acquired Information-Security-Resources.com, one of the leading online news portals addressing security issues. ISR brings a number of high profile authors to Infosec Island, who will regularly offer their rich experience and broad set of security expertise for the benefit of the community. The combination of the two communities also allows for Infosec Island’s free and premium tools to be made available to ISR’s international audience – adding further value to their existing readership.

Advice on Brokers and Up-Front Fee Fraud

January 7, 2010 by ADMIN · Leave a Comment

By Greg George, Managing Partner of GTI Advisors

A few thoughts on brokers and other middlemen requiring fees up front – usually under the guise of due diligence work that needs to be done, to better position your business plan and pro-forma, along with all the assurances and window dressings of how they will get your deal funded – these are great sales people, and most are frauds…

Data Security Regulations Require Action

January 5, 2010 by ADMIN · Leave a Comment

By Kenneth Leeser, President, Kaliber Data Security and Compliance

This is a strong acknowledgment that proper data security programs not only involve hardening the perimeter with firewalls, disk encryption, and Intrusion Prevention Systems, they must also include the implementation of appropriate employee policy and procedures, training and enforcement…

Next Page »