PRO+ Premium Content/Information Security

Thank you for joining!

Access your Pro+ Content below.

Nov. 2012/Volume 14/No. 9

Information Security Decisions: From Dogma to Data

This article is part of the Information Security issue of Nov. 2012/Volume 14/No. 9

The information security field needs to overcome information sharing roadblocks to improve decision making.

Access this PRO+ Content for Free!

You forgot to provide an Email Address.
This email address doesn’t appear to be valid.
This email address is already registered. Please login above.
Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

Features in this issue

PDF download: Information Security magazine November 2012
by Information Security magazine staff
In this issue, find out who won this year’s Security 7 Award, Also, we examine the pros and cons of the Metasploit penetration testing framework.
Old Application Vulnerabilities, Misconfigurations Continue to Haunt
by Robert Westervelt
Flaws in legacy applications and configuration blunders still plague organizations, experts say.
Information Security Decisions: From Dogma to Data
by Wade Baker
The information security field needs to overcome information sharing roadblocks to improve decision making.

Developing a BYOD Strategy: Weigh the Risks, Challenges and Benefits
by Krishnan Chellakari
Organizations need to consider benefits and risks as they embrace BYOD.
Security Warrior for Cloud Transparency
by Jim Reavis
Ron Knode, who passed away earlier this year, was a tireless advocate for cloud security transparency.
GRC Management and Critical Infrastructure Protection
by Doug Powell
GRC needs to adapt to become a truly effective risk management tool for critical infrastructure.

Security Risk Assessment Process a Team Effort at Notre Dame
by David Seidl
The university created a committee to tackle risk assessment on an ongoing basis.
FISMA Compliance and the Evolution to Continuous Monitoring
by John Streufert
The U.S. Department of State developed a system for improving federal cybersecurity.
The new era of big data security analytics
by Preston Wood
The information security industry needs to shift its focus to data-driven security.

Metasploit Review: Ten Years Later, Are We Any More Secure?
by George V. Hulme
Some say the pen testing framework is a critical tool for improving enterprise security, while others say it helps attackers.
Cloud Compliance: Tackling Compliance in the Cloud
by Davi Ottenheimer
Moving to a cloud environment brings compliance challenges, but they’re not insurmountable.

Columns in this issue

Security 7 Award 2012: Seven Outstanding Information Security Pros
by Marcia Savage
Security 7 Award 2012 honors seven outstanding information security pros. Find out who won this year’s Security 7 Award.
Protecting Intellectual Property: Best Practices
by Peter J. Toren
Organizations need to implement best practices to protect their trade secrets from both internal and external threats.
Pros and Cons of Information Security Certifications
by Doug Jacobson and Julia A. Rursch
Educating the security professional requires far more than a certification exam.

Marcus Ranum chat: Next-generation SIEM
by Anton Chuvakin
Security expert Marcus Ranum goes one-on-one with Gartner’s Anton Chuvakin about SIEM technology and where it’s headed.

View Information Security Archives

SearchCloudSecurity

How to deploy deep packet inspection in the cloud

Despite privacy concerns about deep packet inspection, it can help improve cloud network security for enterprises. Expert Frank ...

The security implications of serverless cloud computing

Cloudflare Workers is new for serverless cloud computing and introduces benefits and drawbacks for security professionals. Expert...

How to build a cloud security strategy after migration

Enterprises can face an array of issues when they migrate to the cloud. Learn about three of the main challenges and how to ...

SearchNetworking

SD-WAN cost savings hinge on underlying WAN technologies

SD-WAN marketing almost always mentions the benefit of cost savings. Cut through the hype and discover how SD-WAN works with MPLS...

Wireless network configuration basics: 5 steps to follow

Different wireless networks have different requirements. However, some common principles exist for strategizing your wireless ...

Latest SD-WAN features offer better management, security

Enterprises looking to buy software-defined WAN products should evaluate the SD-WAN features that vendors offer. But the market ...

SearchCIO

Next-gen RPA bots automating job roles, not just tasks

Robotic software is moving beyond automating tasks to automating big pieces of certain job positions. Case in point: Automation ...

How AI cybersecurity thwarts attacks -- and how hackers fight back

IT leaders are using AI to take security to the next level. But how much security can AI provide? David Petersson examines where ...

Accenture predicts post-digital age where trust is the differentiator

The latest Accenture Technology Vision report calls out 'DARQ' technologies as the new must-have for CIOs and underscores the ...

SearchEnterpriseDesktop

5 Windows 10 security settings to tweak

Desktop security is crucial, and the default settings of Windows 10 can leave organizations vulnerable. Here are a few changes to...

New Zoho office application software includes AI feature Zia

Zoho's next generation office application software seeks to integrate business groups to contextualize the workplace with AI, ...

What IT needs to know about Windows 10 update troubleshooting

The Windows update process can cause a whole slew of problems for users and IT. Get acquainted with these Windows 10 update ...

SearchCloudComputing

Compare tools for multi-cloud Kubernetes management

For IT teams that need to manage Kubernetes deployments that span multiple cloud platforms, here are seven tools intended to ...

Control the cloud bill and avoid unexpected costs

Don't get discouraged by high cloud costs. Use these four tips to whip your bill into shape.

Back up VMs with Azure snapshots and managed disks

Follow these steps to take VM snapshots in Microsoft Azure and learn when the technique is -- and isn't -- the right fit for your...

ComputerWeekly.com

Estonia redoubles efforts to attract global IT talent

IT professionals from all over the world are being lured to Estonia through a government recruitment campaign

Cloud-era backup appliances aim at hybrid content platform

While traditional backup apps evolve to meet the cloud via S3 and Azure, a new breed of backup appliances aims to build a single ...

How the immersive VR film Tree was created

New Reality Company worked across games development and video effects to bring about a virtual reality immersive experience