Security Management Strategies for the CIOEmail Alerts
-
Data breach notification laws: Timing right for breach notification bill, experts say
The bill would supersede state laws and experts say they could help enterprises by setting one standard set of rules for breach notification. News | 01 Jun 2011
-
Wikileaks insider threat: A lesson for government cybersecurity managers
The Wikileaks insider threat is not the first and will not be the last, however with the media hype Wikileaks has garnered, government cybersecurity managers are beginning to take different approaches to security. News | 18 May 2011
-
Security lab, pen testing key to proactive, creative cybersecurity
IT officers at different federal agencies recommend giving "the nerds, the geeks, and the young people" a chance to pen test systems. News | 04 May 2011
-
As cyberattacks increase, so does need for penetration testing
The rise in cyberattacks highlights the need for robust penetration testing of government networks. News | 20 Apr 2011
-
DOJ and FBI shut down massive Coreflood botnet
The U.S. Department of Justice and FBI said they disabled a massive, international botnet that took user names, passwords and financial information. Security Bytes blog | 14 Apr 2011
-
RSA panel debates cyberwar definition, realities
At RSA Conference 2011, a panel of experts, including Bruce Schneier and former DHS secretary Michael Chertoff, discussed cyberwar, espionage and how the ground rules for handling such conflicts will be decided. Article | 16 Feb 2011
-
RSA 2011: Schmidt-led Town Hall confronts public-private cooperation – again
At RSA Conference 2011, a Town Hall-style meeting of government cybersecurity officials, including cybersecurity coordinator Howard Schmidt, pressed for continued public-private sector cooperation, increased information security awareness training an... Article | 16 Feb 2011
-
Following Stuxnet Trojan, NERC security chief calls for rugged software
The Stuxnet malware has highlighted the need for software with fewer defects and is an "indictment on the IT business in general," according to the security chief at NERC. Article | 06 Oct 2010
-
State CISOs lack authority to manage risks across agencies
Study finds the need for more oversight of state agencies and recommends new laws that hold agencies and third-party service providers accountable for their security programs. Article | 27 Sep 2010
-
Federal telework: Mitigating the security risk
Federal IT managers will likely see greater demands to facilitate and improve telework infrastructures at their agencies. News | 11 Aug 2010