the State of Security

IT Security

Why physical and information security working together might give a Hollywood spy a headache

Why physical and information security working together might give a Hollywood spy a headache

by Shawna Turner-Rice

Everyone has a favorite spy movie. I admit to a particular fondness for the Bond franchise, even though most people can probably forecast the storyline without ever actually seeing any specific movie.  There is a specific piece of that trope that completely speaks to the relationship between cybersecurity and physical security. In all spy movies, [...]

Read More
Retiring the Perimeter-Centric Approach to Security

Retiring the Perimeter-Centric Approach to Security

by Crystal Miller

It is clearly time to retire the perimeter-centric approach to security. Actually it’s hard to believe there was ever a time when data protection could be managed by putting up the equivalent of an electrific fence around the perimeter to keep the bad guys out. Despite large investments in security defenses, the reality is organizations are still finding their systems regularly compromised.  With insider attacks, data [...]

Read More
Who’s measuring Information Security Risk anyway?

Who’s measuring Information Security Risk anyway?

by Shawna Turner-Rice

In this business of security, one of the most common challenges is that it’s hard to know where you stand, let alone compare today’s stand to yesterday’s. We just about learn how to measure, manage and address one type of problem (say malware) and another appears (say botnets). In addition, we want to know that [...]

Read More
Explaining Information Security, Risk and Compliance to Your Mom

Explaining Information Security, Risk and Compliance to Your Mom

by Cindy Valladares

I’m sure you’ve been at a social party enjoying a good conversation when someone asks you: “So what do you do?”. It’s frustrating sometimes to explain in layman terms what we do as information security professionals. On top of that, it seems like everyone in the industry has his or her own way of defining [...]

Read More
Considering PII as “Potential” Information on unique Identity

Considering PII as “Potential” Information on unique Identity

by Shawna Turner-Rice

With all the conversations about Google and their privacy policy changes, as well as the ongoing conversation about how much risk the Zappos breach really offers; the concept of PII seems like a topical item for this blog post. I like to proceed like the King tells the White Rabbit: “”Begin at the beginning,” the [...]

Read More
Why Roman Emperors are security relevant (CAESERS FE and InfoSec)

Why Roman Emperors are security relevant (CAESERS FE and InfoSec)

by Shawna Turner-Rice

Caesar Augustus was the Roman Emperor whose legacy is what most people remember when they think of a Caesar. In particular, because as children, most of us learned that he ushered in the Pax Romana and expanded the Roman Empire a lot while creating a bunch of standards that improved the quality of life for [...]

Read More

← Previous Entries

Next Entries →