This article can also be found in the Premium Editorial Download "Information Security magazine: Security 7 Award winners and the latest on effective security awareness."
Download it now to read this article plus other related content.
Information Security magazine announces the winners of the fifth annual Security 7 Awards. The awards recognize the efforts, achievements and contributions of practitioners in the financial services/banking, telecommunications, manufacturing, retail, government/public sector/non-profit, education and healthcare/pharmaceutical industries. Winners have made noteworthy contributions to their organization or the security community in areas such as, but not limited to, research, policy and process development, product development, standards work and community contributions. These individuals have made an impact on the advancement of, research of, application of and management of information security technologies, policies and practices.
This year, each of the seven winners was asked to write a first-person essay on a subject matter they are passionate about. The subjects range from critical infrastructure protection, to national security, to communicating effectively about risk with senior management. The winners represent the best the information security profession has to offer, and their perspectives serve as important benchmarks for the industry today.
INFORMATION SECURITY MAGAZINE'S 5TH ANNUAL SECURITY 7 AWARDS
Make Critical Infrastructure a Priority: Critical infrastructure protection must be addressed today to protect our country tomorrow.
Government Must Keep Pace with Cybersecurity Threats: Securing the Internet means to much to the future of the U.S. economy and national security.
Report Security and Risk Metrics in a Business-Friendly Way: Security metrics must, not only provide a view of security posture, but must support security budgeting and investment processes.
Build a Security Control Framework for Predictable Compliance: Healthcare provider Humana Inc., has developed a security controls framework that addresses all of the industry and federal regulations it must comply with.
Improve SSL/TLS Security Through Education and Technology: Carnegie Mellon University's CyLab designs security to improve all aspects of society.
Communicate Effectively with Management About Risk: Learn how to communicate with senior management about risk; it's your job.
Prioritize Information Security over Compliance: Organizations need to prioritize security over compliance to ensure comprehensive risk mitigation.
This was first published in October 2009