Monday, January 17, 2011
New skills needed for cloud computing: Survey Contract negotiation skills are one of the top three required abilities for information security professionals dealing with cloud computing, according to new research
Thursday, April 15, 2010
Canadian CIOs admit lack of security awareness For the first time, PricewaterhouseCoopers breaks out Canadian stats from its annual survey of security practices in organizations worldwide 
Monday, April 05, 2010
Cloud app procurement lacks security: Symantec A new study by Symantec and the Ponemon Institute reveal a low number of organizations have a policy in place for procuring cloud apps. But one security expert says the study is based on the belief that the cloud is not secure--yet the jury is still out
Friday, October 16, 2009
A painful lack of IT security jobs An IT security pro's personal tale of a long and bloody job hunt and what it says about the industry's current state...
Tuesday, January 13, 2009
Malaysia Airlines strengthens security Using a utility model, the airline will save upfront costs on software, hardware and professional services
Wednesday, September 10, 2008
Hong Kong earmarks funds for patient data security After 10 incidents of data loss, with apparently no disclosures of patient information, the city has decided to spend just over US$4 million to improve information security
Thursday, July 31, 2008
Learn when to back off Being overly rigid on security procedures can sometimes do more harm than good. Knowing when to cut users some slack can actually help to tighten your security environment.
Monday, July 28, 2008
Focus on the human factor, security panel says An ISACA panel champions a governance model for information security that demands an "intentional culture" of a secure corporate environment
Wednesday, May 28, 2008
Privacy Commissioner probes cloud computing Ann Cavoukian’s office looks at services to host software and data over the Internet and raises questions about the protection of users’ information. Consider her key identity management suggestions
Sunday, May 25, 2008
TJX fires staffer for talking about security The company is sensitive about security after a massive data theft exposed customers' credit and debit information last year. Posters to security Web sites sympathize with the staffer, says the CEO of Sectheory.com
Thursday, March 29, 2007
Security survival tips for the Web 2.0 world Here are some tips for developing security policies and practices that best fit your company, including pointers for communicating these new Web 2.0 policies to workers
Tuesday, February 13, 2007
Major UK building society fined over lost laptop The U.K.'s financial services regulator has levied a heavy fine against the nation's largest building society over a stolen laptop containing confidential customer information. 
Thursday, December 07, 2006
Putting I.T. in the compliance picture If you’re the CIO of a publicly held company, you’re well aware that you fit into the compliance picture. But if you’re not quite sure how large your piece of the canvas is, this article should give you a better understanding of whatyou’re facing. 
Thursday, September 28, 2006
Users question Microsoft security Since Microsoft Corp. launched its Trustworthy Computing initiative in January 2002, the company has substantially improved the security of its products, its security chief said this month. 
Sunday, August 20, 2006
Rand survey addresses information security void A new security survey being produced by Santa Monica, Calif.-based Rand Corporation on behalf of the U.S. Departments of Justice (DOJ) and Homeland Security (DHS) seeks to connect the islands of information available on information security into a more coherent whole.
Thursday, July 06, 2006
Laptop precautions: Do companies care? Over the past few months there has been an unremitting drumbeat of news stories about vast amounts of data being lost when corporate laptops are stolen. In almost all these cases, the data on the laptop was not encrypted, but that is not the real problem. 
Sunday, July 02, 2006
Building security into applications One Canadian security expert believes the key to thwarting threats of all types lies in the organization’s ability to define the relationship among roles, identities and assets. 
Thursday, May 11, 2006
CISOs mull over metrics to justify security spending Information security may have been generally viewed in the past as something that’s difficult to measure, but security managers are now recognizing that metrics could make or break security budget allocations. 
Sunday, March 19, 2006
UK firms weak against ID theft, study says Only one per cent of U.K. companies use all methods available to control access to their IT systems and prevent security problems, according to the Department of Trade and Industry (DTI). 
Thursday, August 04, 2005
Open Group to certify IT architects The Open Group launched its first IT architect certification program last month, renewing a debate among some users over the skills required for the position. 
Sunday, July 31, 2005
The enemy within Internal information security attacks are outgrowing external attacks at the world’s largest financial institutions, according to the 2005 Global Security Survey, released recently by the Financial Services Industry practices of the member firms of Deloitte Touche Tohmatsu (DTT).
Monday, July 18, 2005
Open Group plans to certify IT architects The Open Group LLC plans to launch its first IT architect certification program this week, renewing a debate among some users over the skills required for the position. The program defines a set of worldwide standards for measuring the skills and experience of IT architects and for assessing the operation of IT architecture practices in enterprises. 
Thursday, March 03, 2005
Today's CSO needs to be a know it all Chief security officers (CSOs) must expand beyond their technical roots and embrace a company’s business processes and thinking since security is a key driver for business success, panellists said at the recent RSA Conference 2005 in San Francisco. 
Tuesday, June 08, 2004
Building a better business case Choosing her words carefully, Nina Burgess describes her employer, Fortune 500 financial company Comerica Inc., as "very intentional." By that, she means it's a company with lots of process and a deliberate decision-making model. If you want to spend the company's cash, you'd better have your business case down cold. That's because you'll have to make your pitch to the Strategic Investment Committee, an august body of top-level leadership that generally meets every four months to scrutinize every major investment proposal. The company has a multi-step process for ensuring that the business case presented for each project is truly accurate.