Security Audit Compliance and Standards
- February 24, 2011
A survey of more than 300 IT professionals found that 25% of IT projects begin as part of compliance initiatives.
- January 31, 2011
A study by the Ponemon Institute found that the average total cost of compliance is more than $3.5 million.
- January 12, 2011
A survey of 500 security professionals found that although the compliance initiatives are burdensome, they are improving security at most organizations.
- July 30, 2010
The research firm's new 123-point maturity model is intended to go beyond COBIT as a more comprehensive way to help companies find and fix gaps in their infosec programs.
- October 30, 2008
Ernst & Young's 2008 Global Information Security Survey finds both positive and negative trends in information security depending on how you look at the numbers.
- October 13, 2008
Steven Katz, widely recognized as one of the first CISOs in the security industry, has been keeping an eye on the current financial crisis and company information risk management processes. Katz, a former CISO at Citigroup, JP Morgan and Merrill ...
- August 28, 2008
Using visualization tools, security pros can build charts and graphs to make sense of complex log files and data and improve their company's security stance.
- April 10, 2008
SAN FRANCISCO -- Companies need to embark on data classification projects to gain more control over its movement and minimize data leakage, but it's difficult to find a company successfully carrying out a project. Rena Mears, Deloitte's global and ...
- April 08, 2008
Michael Chertoff, secretary of the Department of Homeland Security called on the private sector to do more to secure the internet from serious attackers.
- April 02, 2008
As Executive Editor Dennis Fisher explains, the Hannaford supermarket breach illustrates how too much emphasis on compliance puts critical data at risk.
- February 19, 2008
Kristin Lovejoy came to IBM as chief technology officer of Consul Risk Management, which was acquired by Big Blue in early 2007. Lovejoy helps contribute to IBM's company-wide security strategy, overseeing the company's governance, risk and ...
- November 01, 2007
IBM plans to invest $1.5 billion on security research in 2008. The company is also using recent acquisitions to introduce a PCI DSS program.
- October 08, 2007
The Cyber Security Industry Alliance is shifting from educating businesses to targeting members of Congress in its push for tougher data security and data breach notification laws.
- October 02, 2007
Sreekanth Ravi was a co-founder of SonicWall, where he and his brother Sudhakar worked to commoditize firewalls for the SMB market. Now the CEO of Code Green Networks, Ravi hopes to achieve more success in the SMB market by making data protection ...
- September 25, 2007
TJX Cos. should have moved faster to upgrade its Wi-Fi security from WEP encryption to WPA encryption, say Canadian officials.