Security Management Strategies for the CIOAccess "Six Sigma and CMM models offer security best practices"
This article is part of the June 2004 issue of Exposed: Why your AV software is failing to protect you
When Al Schmidt joined Arch Chemicals as CIO in 1997, security wasn't the first thing on his mind; IT survival was. The legacy mainframe system was shaky, and the company wanted to implement SAP on top of it. "We didn't have the skills and organization to be able to manage what we had," Schmidt says. Six Sigma was the key to improving Arch's IT systems and, ultimately, the company's security. Only 20 percent of corporate infosecurity departments are pursuing formal management methodologies; the remaining 80 percent continue to use ad hoc, unfocused approaches. , Schmidt, who learned about the Six Sigma continuous improvement methodology as an engineer, brought discipline to IT and eventually expanded it to infosecurity. "People began to get the idea that 'it isn't enough for me to succeed. I'm going to be totally dependent on my neighbor succeeding, and if he or she doesn't succeed, I'm going to fail and I'll feel it in the pocketbook,'" Schmidt says. Everything started with business objectives: Keep the operations running and lower the costs. The IT ... Access >>>
Access TechTarget
Premium Content for Free.
What's Inside
Features
-
-
Antivirus software comparison, 2004: Not all AV products are equal
Your desktop AV may be leaving you wide open to attack.
-
NAC best practices and technologies to meet corporate security policy
by Curtis Dalton, CISSP
New solutions help you secure endpoints
-
Antivirus software comparison, 2004: Not all AV products are equal
-
-
Physical and IT Security: Overcoming Security Convergence Challenges
Physical and IT security convergence seems just one leap away...and may remain that way. Learn how to overcome security integration challenges.
-
Six Sigma and CMM models offer security best practices
Security can learn a lot from Six Sigma, CMM and other established business methodologies.
-
Physical and IT Security: Overcoming Security Convergence Challenges
-
Columns
-
Unintentional benefits: Attackers force search for better Trojan virus protection
by Lawrence M. Walsh
Editor Lawrence M. Walsh says creative attackers are unintentionally aiding the search for better security defenses.
-
Firewall and system logs: Using log file analysis for defense
by Marcus Ranum
Log analysis is the most under-appreciated, unsexy aspect of infosecurity, yet Marcus Ranum says it's one of the most important.
-
Prevent data loss, theft with secure data outputs
by Pete Lindstrom, Contributor
To secure data outputs, some organizations are going a step further by deploying data protection systems for specific applications.
-
Linux malware: Challenges of the Linux worm
Should Linux users brush off concerns about malware plagues? Short answer: No. Learn more about Linux malware and the challenges posed by the Linux worm.
-
Internal security controls and business continuity go hand in hand
Learn the top four quality of security beliefs and see why better security means better quality.
-
Unintentional benefits: Attackers force search for better Trojan virus protection
by Lawrence M. Walsh
More Premium Content Accessible For Free
Unlock new pathways to network security architecture
E-Zine
Network security architecture is showing its age at many organizations. With new technology, different data types, and use of multi-generations of ...
Emerging threat detection techniques and products
E-Handbook
Advanced persistent threat (APT) has been a used and abused term in the security industry, but security experts say targeted attacks are a growing ...
The rapid evolution of MDM solutions
E-Zine
Mobile device management (MDM) continues to grow at a feverish pace, both in terms of adoption and mobile security features. BYOD policies, and the ...