Earlier this week I talked about building out an actuarial table for defining risk in information security as something that would work in helping information security professionals being insured against the work that they do.
Malpractice in Information Security?
Interesting QA over at CSO Security Counsel today with Dan Greer trying to define what is information security malpractice, and the most interesting part is that today, we can’t define it.
Computer Security Still Damaged by Social Engineering
Interesting article out of CIO magazine about Vista, and that while it is a highly secure operating system, with some neat things it can do, it still is not invulnerable to those programs that require social engineering to get the user to do something.
Oracle Responds To Information Security Critics
Oracle the Database Company is taking time out on its corporate blog to address a number of critics on the security of Oracle Databases.
Information Security Fundamentally Broken
In May of 2006 I read an article by Noam Eppel on Security Absurdity, Why information security is broken, which can be downloaded here to read the original article.
Risk Management – Security Qualified Candidates
All companies have a risk tolerance, some companies have a higher tolerance for risk than other companies do, many follow few lead.
Collaborative Information Security Next?
Have anyone ever been on the phone with a client after the job, where the client wants more information, needs a copy of the report, or just wants to spend some time discussing the implications of the report that the company generated for them?
Sci-Fi Writer Threat To National Security ?
Apparently Paypal has frozen the assets of science fiction fantasy writer George R.R. Martin. For some unknown reason his name appears on the United States Department of The Treasury in the Office of Foreign Assets Control.
Google And Security Pass In The Night
Organizing all the world’s information may be a noble goal, but a couple of prominent blog voices wonder if past security concerns could bode poorly for adoption of Google applications.
Web Services Overtakes Security
Coverage of the Society of Information Management’s annual SIMposium conference reveals that Web services technology has eclipsed security as the top focus for senior IT executives.