SHARE Follow this article on Twitter Facebook LinkedIn Bookmark and Share
Home » Blogs » Security

Back to the future


Learning from the past is critical in helping prevent the repeat of past mistakes.

 

 

Studying new research is important in helping to adopt new practices when available and appropriate rather than having to wait for them to go mainstream several years later. Finally, watching for a changing business environment is also important – e.g. to prevent from being hit by fast changing requirements.

 

It’s a tough world out there!

 

Six more excellent resources are highlighted this week.

 

Have another great week.

 



Dan Swanson

 



 

1. Build Security In (BSI)

BSI contains and links to best practices, tools, guidelines, rules, principles, and other resources that software developers, architects, and security practitioners can use to build security into software in every phase of its development. BSI content is based on the principle that software security is fundamentally a software engineering problem and must be addressed in a systematic way throughout the software development life cycle.

https://buildsecurityin.us-cert.gov/daisy/bsi/home.html

 


2. Risk Management and Governance


The Risk Management and Governance Board (RMGB) offers concise, informative guidance materials for boards of directors and senior managers. These guides provide a practical approach by which directors can work with senior management to fulfill their responsibilities to help their organizations meet the expectations of shareholders and stakeholders.

http://www.rmgb.ca/index.cfm/ci_id/243/la_id/1.htm

 

3. CRUCIAL SKILLS NEWSLETTER - The perfect tool for sharpening your crucial skills Master the skills from the books and the training programs with our weekly, award-winning Crucial Skills Newsletter. Each week, the Crucial Skills Newsletter brings tips, experiences, and additional instruction to your e-mail inbox from the authors and experts of Crucial Conversations and Crucial Confrontations. Engage with the content as the experts answer your questions, help you stay sharp, and offer new insights for achieving results through crucial skills applications. http://www.vitalsmarts.com/newsletter.aspx

 

4. Maximizing the Success of Chief Information Officers: Learning From Leading Organizations

This guide is intended to assist federal agencies in maximizing the success of CIOs. Principles and practices gleaned from the case studies presented in the GAO guide offer concrete suggestions on what agency executives can do to ensure the effectiveness of their CIO organizations. The guide does not address all of the responsibilities which fall to federal agency CIOs - only those which have parallels in the private sector. http://www.gao.gov/new.items/d01376g.pdf



 



 

5. Board Oversight of IT Is Needed

Traditionally, and rightfully so, the board has focused on governing the organizatio


blog comments powered by Disqus