Security Management Strategies for the CIO
Mike Rothman is President of independent research firm Securosis. His bold perspectives and
irreverent style are invaluable as companies determine effective strategies to grapple with the
dynamic security threatscape. Mike specializes in the "sexy" aspects of security, like protecting
networks and endpoints, security management, and compliance. After 20 years in and around security,
he’s one of the guys who “knows where the bodies are buried” in the security space. Mike published
“The Pragmatic CSO” in 2007 to introduce technically oriented security professionals to the nuances
of what is required to be a senior security professional. Securosis Blog
Contributions from Mike Rothman, Contributor
- The 100-day plan: Achieving success as a new security m
- Learning the language of global compliance
- How to get information security buy-in from the executi
- What value do research firms provide to their subscribing enterprises?
- What certificate offers the best ROI for an IT project manager?
- How does information security prevent fraud in the enterprise?
- Differences between an SAS 70 data center and a Tier III data center
- Are independent researchers out for fame?
- Security certifications: Are they worth the trouble?
- Would you recommend SANS Institute security training?
- What vendors would you recommend for software write-blockers?
- How to look past information security vendor rhetoric
- Is there a published standard or guideline for system hardening?
- Getting business units to contribute to an information security policy
- Best practices for managing DNS, knowing it's anything but trustworthy
- Who has rights to patient information under HIPAA?
- What are the best business practices for Unix audit settings?
- How can we convince our VP that a network-based DLP makes sense?
- How can a Certified Ethical Hacker become a line penetration tester?
- Is it worthwhile for an organization to invest in HIPAA compliance?