From Mary Brown | May 29th, 2009
President Obama announced today his plans to appoint a cyber security czar who will be responsible for coordinating efforts to secure information assets and critical infrastructure. There are a number of efforts going on in congressional committees, all of which relate to individual agencies in disparate fashion which makes for a big coordination challenge for this position.
What are the characteristics that would you recommend that this new cyber security czar have in order to accomplish the goals laid out by President Obama? Share your thoughts. Read the article.
Tags: cyber czar, cyber security czar, President Obama
Delicious // Digg This! // Technorati
Subscribe to comments via RSS 2.0 
From Mary Brown | May 28th, 2009
I attended a security conference recently, where the consensus seemed to be that cloud computing is here to stay. This is despite the fact that most organizations do not truly understand the implications of storing their data over the Internet on servers outside of their control. According to ZDNetAsia, the CTO of Sun Microsystems is hoping to create a forum to look into this particular issue.
What has been your experience with storing data out in the cloud? Do you recommend it, and if so, do you have strategies for mitigating some of the associated risks that you would like to share?
Tags: cloud computing, Internet, ZDNetAsia
Delicious // Digg This! // Technorati
Subscribe to comments via RSS 2.0
From Dr. Steven Brown | May 27th, 2009
When discussing security, we normally think of things like policies, hacking, terrorism, etc. But the same attention is not given to our food supply.
Why? READ ON
Tags: agriculture crime, agriculture safety, security
Delicious // Digg This! // Technorati
Subscribe to comments via RSS 2.0
From Mary Brown | May 19th, 2009
Social networking tools have seen a fair amount of press lately to the ways in which hackers use these tools to commit crimes. PC Advisor reports a French hacker that gained administrative control of Twitter by compromising the account of an employee. That is what is known as an ‘adverse event’ in anyone’s world. PCWorld posted an article describing five different security problems involving Facebook in a single week, in March 2009.
Are you are protecting your organization from the threats that have come about through an increase in Web 2.0 applications and social networking sites?
Tell us what strategies you use to mitigate these risks.
Tags: PC Advisor, PC World, security, social networking, Twitter, Web 2.0
Delicious // Digg This! // Technorati
Subscribe to comments via RSS 2.0
From Steven Helwig | May 8th, 2009
Organizations, regardless of the type of business, are required to meet many regulations and laws . This can be expensive and strenuous on an organization’s resources. There are physical, technical and policy type controls that must be met in complying with regulations and laws. Having a solid security program with properly written policy can meet most requirements.
Unless a policy is in a major document, such as the security plan, it should be a document that is between one and two pages long, is concise and enforceable. READ ON
Tags: SANS, security plan, Security Policy Development
Delicious // Digg This! // Technorati
Subscribe to comments via RSS 2.0
From Mary Brown | May 4th, 2009
I read an article that Paul Marks wrote recently about Dr. Stephen Beeby, an engineer at the University of Southampton, UK. Evidently, Dr. Beeby has received funding to continue his research on using ear-generated sounds, as a form of authentication. Research is reportedly in the early stages, yet there is already speculation on the Internet as to how to defeat it based on a description of the theory.
The idea that ears carry passwords is, in my opinion, questionable. Still, what is the likelihood that one day we will be using ear-generated sounds as a means of proving who we are? Your thoughts?
Tags: authentication, ears, noise, Research
Delicious // Digg This! // Technorati
Subscribe to comments via RSS 2.0
