Security Management Strategies for the CIO
Mike Rothman is President of independent research firm Securosis. His bold perspectives and
irreverent style are invaluable as companies determine effective strategies to grapple with the
dynamic security threatscape. Mike specializes in the "sexy" aspects of security, like protecting
networks and endpoints, security management, and compliance. After 20 years in and around security,
he’s one of the guys who “knows where the bodies are buried” in the security space. Mike published
“The Pragmatic CSO” in 2007 to introduce technically oriented security professionals to the nuances
of what is required to be a senior security professional. Securosis Blog
Contributions from Mike Rothman, Contributor
- Differences between an SAS 70 data center and a Tier III data center
- What does the future of the endpoint encryption market look like?
- Are independent researchers out for fame?
- Security certifications: Are they worth the trouble?
- Would you recommend SANS Institute security training?
- What vendors would you recommend for software write-blockers?
- How to look past information security vendor rhetoric
- What can be done to keep students from becoming cybercriminals?
- Is there a published standard or guideline for system hardening?
- Getting business units to contribute to an information security policy
- Best practices for managing DNS, knowing it's anything but trustworthy
- Is the Orange Book still relevant for assessing security controls?
- Who has rights to patient information under HIPAA?
- What are the best business practices for Unix audit settings?
- How can we convince our VP that a network-based DLP makes sense?
- How can a Certified Ethical Hacker become a line penetration tester?
- Is it worthwhile for an organization to invest in HIPAA compliance?
- Learn from NIST: Best practices in security program man
- What are the top five concepts or lessons on security management?
- How can organizations secure implanted microchips and RFID tags?