PRO+ Premium Content/Information Security

Thank you for joining!

Access your Pro+ Content below.

Nov. 2012/Volume 14/No. 9

Information Security Decisions: From Dogma to Data

This article is part of the Information Security issue of Nov. 2012/Volume 14/No. 9

The information security field needs to overcome information sharing roadblocks to improve decision making.

Access this PRO+ Content for Free!

You forgot to provide an Email Address.
This email address doesn’t appear to be valid.
This email address is already registered. Please login above.
Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

Features in this issue

PDF download: Information Security magazine November 2012
by Information Security magazine staff
In this issue, find out who won this year’s Security 7 Award, Also, we examine the pros and cons of the Metasploit penetration testing framework.
Old Application Vulnerabilities, Misconfigurations Continue to Haunt
by Robert Westervelt
Flaws in legacy applications and configuration blunders still plague organizations, experts say.
Information Security Decisions: From Dogma to Data
by Wade Baker
The information security field needs to overcome information sharing roadblocks to improve decision making.

Developing a BYOD Strategy: Weigh the Risks, Challenges and Benefits
by Krishnan Chellakari
Organizations need to consider benefits and risks as they embrace BYOD.
Security Warrior for Cloud Transparency
by Jim Reavis
Ron Knode, who passed away earlier this year, was a tireless advocate for cloud security transparency.
GRC Management and Critical Infrastructure Protection
by Doug Powell
GRC needs to adapt to become a truly effective risk management tool for critical infrastructure.

Security Risk Assessment Process a Team Effort at Notre Dame
by David Seidl
The university created a committee to tackle risk assessment on an ongoing basis.
FISMA Compliance and the Evolution to Continuous Monitoring
by John Streufert
The U.S. Department of State developed a system for improving federal cybersecurity.
The new era of big data security analytics
by Preston Wood
The information security industry needs to shift its focus to data-driven security.

Metasploit Review: Ten Years Later, Are We Any More Secure?
by George V. Hulme
Some say the pen testing framework is a critical tool for improving enterprise security, while others say it helps attackers.
Cloud Compliance: Tackling Compliance in the Cloud
by Davi Ottenheimer
Moving to a cloud environment brings compliance challenges, but they’re not insurmountable.

Columns in this issue

Security 7 Award 2012: Seven Outstanding Information Security Pros
by Marcia Savage
Security 7 Award 2012 honors seven outstanding information security pros. Find out who won this year’s Security 7 Award.
Protecting Intellectual Property: Best Practices
by Peter J. Toren
Organizations need to implement best practices to protect their trade secrets from both internal and external threats.
Pros and Cons of Information Security Certifications
by Doug Jacobson and Julia A. Rursch
Educating the security professional requires far more than a certification exam.

Marcus Ranum chat: Next-generation SIEM
by Anton Chuvakin
Security expert Marcus Ranum goes one-on-one with Gartner’s Anton Chuvakin about SIEM technology and where it’s headed.

View Information Security Archives

SearchCloudSecurity

SaaS platform security: The challenges of cloud network security

Organizations have the necessary tools to protect data stored and processed in IaaS platforms. Learn why SaaS platform security ...

How Azure AD uses cloud access control to protect credentials

Features such as Microsoft Azure AD Smart Lockout and Password Protection add security via trusted authentication. Learn more ...

How to monitor and detect a cloud API vulnerability

A REST API vulnerability in Salesforce's Marketing Cloud service put users at risk of data disclosure. Learn how to detect cloud ...

SearchNetworking

Are SD-WAN security concerns warranted?

Networking analysts and engineers examine SD-WAN security concerns, the importance of cabling in wireless environments and a new ...

Verizon 5G rollout could change broadband competition

Verizon launches Oct. 1 a 5G internet service in four U.S. cities. The Verizon 5G rollout could give the company an edge against ...

Mist automates WLAN monitoring with new AI features

Mist says its AI platform for WLAN monitoring can now handle hundreds of queries and will use deep learning to flag anomalies ...

SearchCIO

Blockchain solutions -- and disruption -- pondered at EmTech 2018

The gathering at EmTech 2018 explored whether blockchain solutions could give the world a new model of trust. What seemed certain...

What's in it for the enterprise at 2018 Apple event? Apple Watch, AR

The 2018 Apple event may not have wowed on the smartphone front, but the new Watch Series 4, with a built-in ECG, could be a hit ...

Cloud migration best practices: 4 potential problems to avoid

Andrew Larkin, from the Cloud Academy, explains why successful cloud migration strategies require more than just a 'lift and ...

SearchEnterpriseDesktop

Reduce update-related downtime after a Windows 10 OS upgrade

Windows 10 updates are a necessary evil, as they add new features and improve security, but also cause downtime for users. IT can...

4 tips for handling the upgrade process to Windows 10

To ensure a smooth upgrade to Windows 10, IT should take advantage of helpful tools such as the Microsoft Management Console to ...

Assess IT help desk software options based on these features

Explore communication channels, ticket management, agent management, knowledge base options and reporting capabilities when ...

SearchCloudComputing

Improve hybrid cloud monitoring through automation, alerts

To effectively monitor hybrid cloud infrastructure -- without being overloaded with data and alerts -- IT teams need to rethink ...

How Azure Cloud Shell can streamline resource management

Azure Cloud Shell's browser-based model frees IT teams from installation headaches but presents some formatting and timeout ...

Azure outage spotlights cloud infrastructure choices

One difference in Microsoft's cloud infrastructure design may have contributed to the extended outage this week in an Azure ...

ComputerWeekly.com

AI is crucial element of security strategy in the IoT era

Machine learning and network visibility for users and internet of things devices are essential to battle threats inside the ...

Government and businesses won’t be ready for no deal Brexit, says IfG

The Institute for Government says progress on Brexit systems implementations hasn’t been fast enough, and businesses haven’t been...

Tech Nation startup programme demonstrates richness of UK fintech

A Tech Nation programme to support the UK's financial technology startups demonstrates the increasingly diverse range of ...