Access "Information security roles growing in influence"
This article is part of the January/February 2011 issue of Cloud initiatives are changing roles for information security managers
Cloud computing is too attractive for organizations to ignore and Caritas Christi Health Care System is no exception. The Boston-based health care organization, which provides health services to patients in eastern Massachusetts, southern New Hampshire and Rhode Island, is contemplating moving some data storage and possibly email to the cloud. Throughout the vendor evaluation process, Jim Murphy, information security officer at CCHC, is making sure critical security issues -- such as encryption of data in transit and at rest -- are addressed. "I'm working closely with the systems engineering group to plug myself into those projects and conversations," he says. "Before we sign a contract, I'm trying to get security to have a seat at the table to address the risk." In their rush to move IT services and applications to the cloud, organizations have often left security out of the decision process. But Murphy's work reflects a shifting tide, as more businesses are giving security management some degree of authority over cloud initiatives. According to Information... Access >>>
Premium Content for Free.
Information security roles growing in influence
Information security managers are getting more of a say in enterprise cloud initiatives and mobile device projects.
The state of critical infrastructure security
Stuxnet put the spotlight on critical infrastructure protection but will efforts to improve SCADA security come too late?
- Information security roles growing in influence
Enforcing endpoint security
by Lisa Phifer, Contributor
Enforcing endpoint security requires careful planning and deployment.
- Enforcing endpoint security by Lisa Phifer, Contributor
Schneier-Ranum Face-Off on whitelisting and blacklisting
Security experts Bruce Schneier and Marcus Ranum debate whether network security should be based on whitelisting or blacklisting.
The penetration tester is alive and well
Automation hasn't killed the penetration tester – yet.
Old information security challenges persist
by Dave Shackleford
A look back at articles from the past shows that the same information security problems persist today.
- Schneier-Ranum Face-Off on whitelisting and blacklisting
More Premium Content Accessible For Free
Application security policy after Heartbleed
Enterprises leverage open source software for the perceived quality of the code, but the Heartbleed flaw has made many question their use of ...
Devising a security strategy for the modern network
The network of today's enterprise is larger and more diverse than ever, which means there's more for hackers to attack. So as enterprises update ...
The big data challenge: What's in store for NoSQL security
In the rush to capitalize on big data, many companies forget that developing an ecosystem of structured and unstructured data means higher risk of ...