SecurityRatty: tag: approach

A top-down approach to Risk & Compliance Management could have saved TJX some serious money

2007-12-05 13:29:00 by Ryan Shopp in practical risk management

...approach to Risk & Compliance Management could have saved TJX some serious money by: Ryan Shopp Everyone, including me, keeps reading about the TJX data breach. Here are some prime snippets from a few recent articles I've read Industry analysts have estimated the total costs to TJX from $500 million to as much as $1 billion, when legal...

Tags: tjx, saved tjx, tjx data breach, approach, top-down approach, tjx report, top-down, tjx breach, information security

Positive Approach to Security Requests

2008-04-14 11:00:00 by Stuart King in Stuart King's Security and Risk Management Blog

...approach of Replacing the word "No" with the phrase "Yes, and ..." is a simple change in style of communication that can make a big difference in how the risk manager's role and contribution are perceived. It's an important point because taking a negative stance towards requests for new services will eventually result in a loss of...

Tags: business, business carte blanche, risk, risk manager, business teams, approach, risk-conscious culture, information security policies, research note

Webcast Version of My "Choosing Your Log Management Approach" Presentation

2008-01-25 09:39:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...Approach: Buy vs Build vs Outsource " will be turned into a webcast. It will first be aired on the following date January 29, 2008 2:00 p.m. EST/ 11:00 a.m. PST Direct link to registration If you are dealing with logs (or planning to start!), it is a very worthwhile presentation to attend. And fun too About me: http://www.chuvakin.org

Tags: log management approach, presentation, worthwhile presentation, webcast, direct link, outsource, aired, fun, logs

Presentation: "Choosing Your Log Management Approach: Buy, Build or Outsource"

2008-02-01 13:23:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...Approach: Buy, Build or Outsource. " It was given at SANS Lunch and Learn a few times in 2007 and was always immensely popular (we run out of lunches once The topic: how to choose build vs buy vs outsource for log management , what are the critical issues to consider, how you can both build and buy, etc Fun! Especially useful for those who...

Tags: log management, log management approach, log management system, outsource, sans lunch, immensely popular, critical issues, fun, choose

Ignoring threat assessments... interesting approach to information security

2008-02-26 09:59:42 by Editor in Adventures in Security

...approach security control design, implementation, and management in the same way

Tags: party threat, months ago, information, flippant disregard, employee pii, country, responsible, appears, charge

Symantec takes a fling it on the wall approach to NAC

2008-07-29 06:49:15 by HASH0x8cbd290 in StillSecure, After All These Years

...approach to NAC, which came on the heels of their Endpoint Security product version 11 which had NAC included (and which I understand has already been patched/upgraded several times since its release At this point you have Symantec NAC with their endpoint suite which is a throw in but has no guest access option on its own. Than you have the...

Tags: nac, symantec nac appliance, symantec nac, symantec nac server, symantec, offerings symantec, symantec peer-to-peer stuff, nac market, endpoint suite

Symantec takes a fling it on the wall approach to NAC

2008-07-29 07:41:20 by ashimmy in StillSecure, After All These Years

...approach to NAC, which came on the heels of their Endpoint Security product version 11 which had NAC included (and which I understand has already been patched/upgraded several times since its release At this point you have Symantec NAC with their endpoint suite which is a throw in but has no guest access option on its own. Than you have the...

Tags: nac, symantec nac appliance, symantec nac, symantec nac server, symantec, offerings symantec, symantec peer-to-peer stuff, nac market, endpoint suite

Fun Reading on Security - 7

2008-08-27 10:56:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...approach (that virtualization is OK in regards to PCI) will probably win NEWS FLASH! Privacy dies . The date of death? 1967. While reading it , think just how visionary some folks are Finally, just for laughs: How to Spin Bad News Enjoy BTW, I am saving some fun reading for dedicated posts soon About me: http://www.chuvakin.org

Tags: security, fun, security controls resistance, stuff, fun stuff, security issues, business, bona fide business, fun pickup

SDL and the XSS Filter

2008-08-27 15:35:00 by sdl in The Security Development Lifecycle

...approach that blocks many of the most common vulnerabilities to reflected attacks found on the web today. The solution is compatible with existing web pages (doesnt break the web) and thus we were able to enable it by default for users of Internet Explorer 8. Because its a client-side mitigation, it will help protect users from attacks even...

Tags: xss, xss filter, xss vulnerabilities, xss led, anti-xss library, xss attack, xss attacks, attacks, xss filter remembers

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo