Access "Perspectives: Pet information security risks"
This article is part of the January/February 2010 issue of Filling the data protection gap
According to a published report, seven out of 10 companies overspend on IT security expenses without improving security or becoming compliant. What causes this phenomenon? Isn't overspending on security a good thing? The cause is the introduction and promotion of "pet" risks by decision makers. A pet risk is a threat, vulnerability, or product that solves an apparent problem in the minds of IT or security managers. It's their favorite issue, consuming all their attention and therefore, requiring an overabundance of resources to mitigate. In what is a common occurrence for many large organizations, decision makers get in their minds that they need a specific product to prevent what they perceive is an information security risk. IT and security leaders in the organization spend many dollars and hours to get solutions in place to mitigate their pet risks. However, the return on security investment (ROSI) isn't readily apparent and often, the expense isn't worth the apparent risk. It's like a person who's so fearful of having their car stolen that they spend ... Access >>>
Premium Content for Free.
New data protection laws
by Richard E. Mackey, Jr., Contributor
Massachusetts 201 CMR 17.00 and Nevada's data protection law establish new standards for personal data protection
Disaster recovery plans and DLP solutions top 2010 priorities
Disaster recovery plans, DLP solutions, and regulatory compliance are top enterprise priorities, according to Information Security's Priorities 2010 survey
- New data protection laws by Richard E. Mackey, Jr., Contributor
Endpoint DLP fills data protection gap
by Rich Mogull
Learn how endpoint data loss prevention technology complements network DLP and secures data that users interact with on laptops, mobile and portable storage devices.
Attackers zero in on Web application vulnerabilities
Secure coding and vulnerability scanning could mitigate many Web application attacks
- Endpoint DLP fills data protection gap by Rich Mogull
Perspectives: Pet information security risks
by Ron Woerner
IT and security managers often make the mistake of being consumed with a specific risk or threat to the detriment of security
Schneier-Ranum Face-Off: Should we ban anonymity on the Internet?
Security experts Bruce Schneier and Marcus Ranum debate the possibility of eliminating anonymity on the Internet.
Leverage Google Attacks to Improve Cybersecurity
China's hacker attacks against Google's infrastructure, including Gmail accounts of human rights activists as well as Google's source code, should be used to educate enterprises about the reality of cyberespionage from nation states and organized criminals.
- Perspectives: Pet information security risks by Ron Woerner
More Premium Content Accessible For Free
In this special issue, we are revealing the winners of our Security 7 awards. This is the ninth year we've handed out the Security 7 awards, which ...
Cloud and mobility in the enterprise has caused a heightened need for organizations to take a closer look at next generation authentication ...
Virtualization and cloud computing are part and parcel of enterprise networks today. Virtualization security, however, is still a bolt-on affair ...