Access "Cybersecurity: Global risk management moves beyond regulations"
This article is part of the September 2013 Volume 15 / No. 7 issue of Next-generation firewalls play by new rules
Regulatory environments and compliance drive global risk management and associated actions at many organizations. But auditing is not based on actual threats. As threat intelligence becomes more available and this information is offered up by multiple sources, is it changing the way that global enterprises view risk assessment? "The ability to access intelligence and react to complex attacks is vital," said MacDonnell Ulsch, CEO and chief analyst at ZeroPoint Risk Research, LLC, a Boston-based consultancy focused on global risk management and related services. "If a regulation states that a risk assessment must be conducted, what does that really mean? "Regulations don't instruct, so it is important to understand what to look for," said Ulsch, who likens global threat intelligence to a cat setting out birdseed. "After a time, the birds feel it's safe to eat there." Consumed by compliance Security professionals have warned companies for years that compliance-driven security programs may not adequately address security concerns. "It is very rare that you will... Access >>>
Access TechTarget
Premium Content for Free.
What's Inside
Features
-
-
Firewalls play by new rules
by David Strom, Contributor
Modern firewalls offer greater application awareness and user controls. Protect your migration strategy with these tips from the pros.
-
Cybersecurity: Global risk management moves beyond regulations
by Kathleen Richards, Features Editor
Global risk management based on the lowest common denominator may not ‘comply' with IP or trade secrets. Analysts see big changes ahead.
-
Firewalls play by new rules
by David Strom, Contributor
-
-
Bridging the IT security skills gap
by Robert Lemos
While poaching security talent may plug short-term gaps, outreach and education will solve the long-term shortfall in IT security professionals.
-
Bridging the IT security skills gap
by Robert Lemos
-
Columns
-
Cybersecurity and global risk assessment enter the boardroom
by Kathleen Richards, Features Editor
Analysts expect security concerns to drive global risk management, but executives may need convincing.
-
Converting to cloud: Ranum Q&A with Lee Heath
by Marcus J. Ranum, Contributor
Not down with Dropbox? Lee Heath embraced shadow IT and improved his company's data security practices in the process.
-
Attack security literacy with brute force
by Doug Jacobson, Julie A. Rursch
Forget the slogans. Reset your security awareness program with actionable information.
-
Cybersecurity and global risk assessment enter the boardroom
by Kathleen Richards, Features Editor
More Premium Content Accessible For Free
Developing your endpoint security management transition plan
E-Handbook
This TechGuide will help you develop your endpoint security management transition plan. Articles focus on overcoming the challenges of Web-based ...
Unlock new pathways to network security architecture
E-Zine
Network security architecture is showing its age at many organizations. With new technology, different data types, and use of multi-generations of ...
Emerging threat detection techniques and products
E-Handbook
Advanced persistent threat (APT) has been a used and abused term in the security industry, but security experts say targeted attacks are a growing ...