SecurityRatty: tag: cisos

What can CISOs learn from the Societe Generale debacle

2008-02-19 09:17:17 by Khalid Kark in Security & Risk Management

...CISOs who are reluctant to monitor their system administrators and privileged access users because they feel that there is a level of trust that exists between them and they may send of a wrong signal by monitoring them. Although a majority of people are trustworthy, trusting your privileged users is not a defense that will hold in any court....

Tags: security, formal security strategy, societe generale, security technology, external security challenges, implement security, access, security products, access users

Agencies CISOs Star in LOLCATS!

2008-06-19 13:10:12 by rybolov in The Guerilla CISO

Im surprised they dont issue flak jackets to incoming CISOs, what with as many people taking shots at them Bookmark to

Tags: issue flak jackets, cisos, shots, people, bookmark

Needed: Agency CSOs

2008-06-26 12:49:33 by rybolov in The Guerilla CISO

...CISOs do not have any authority over physical security or personnel security: in reality, they work for the CIO and only have scope over what the CIO manages: data centers, networks, servers, desktops, applications, and databases Except for one thing: were giving todays Government CISO a catalog of controls that contain physical and personnel...

Tags: agency, todays government ciso, cio, ciso, cio manages, cisos, agency cso position, personnel security, responsibility

Learning GovieSpeak: The Plum Book

2008-07-17 12:53:00 by rybolov in The Guerilla CISO

...CISOs Now, Im not a rocket scientist on org charts, but it seems to me that unless you put CISOs up to where theyre answerable to the agency head, theyre just a cost center inside the IT department with no visibility to the decision-makers. Once again, weve crippled our security staffs like the old-school way of doing things On another note,...

Tags: plum book, agency cisos, political, political appointees, cisos, cost center inside, public policy kick, gs-scale, germanyso dry

What's Happiness Got to Do With It?

2008-10-29 10:00:44 by Gunnar Peterson in 1 Raindrop

...CISOs who Changes happened faster that he was able to move Did not read the signs Good intentions went unfulfilled A brutal way to ending a promising career Sad to have around buthow much security improvement comes from this Obviously these models of CISOs are not solving our information security problems. Instead Dr. Garigue points us...

Tags: information security, information security decisions, security, software security champions, architecture, security architecture, security metrics framework, super happy customers, happy customers

Misconceptions about outsourcing security

2007-12-13 14:05:54 by Khalid Kark in Security & Risk Management

...CISOs and CIOs I find that there are many misconceptions about outsourcing security. Here are the most common ones that I come across Outsourcing security is cheaper than doing it internally. Cost is usually the one of the reasons business gets interested to outsource but Forrester has consistently found that for security managers cost is...

Tags: security processes, establish security processes, security, processes, security controls, security managers cost, cost, security operations, security services

Recession brings a downturn in security spending and jobs

2008-02-13 10:58:30 by Khalid Kark in Security & Risk Management

...CISOs do to recession proof their security programs This means leaner security organizations (yes that means lay offs), significantly reduced spending on security consultants and contractors, and squeezing the most out of every buck that is spent for information security. This would also mean longer sales cycles for security vendors, cost...

Tags: security, information security, information security professionals, businesses, security businesses, fund security projects, real security folk, information security industry, security budgets

PCI compliance are you just checking the box?

2007-11-14 22:05:00 by Patrick McGregor in Data Protection, Management and Leakage

...CISOs face is selling senior management on the funding of PCI initiatives. Often, senior management would rather invest in opening a new store than in purchasing an encryption solution to secure their existing infrastructure. For them, PCI is viewed as a necessary evil: many retailers are simply trying to check the compliance box instead of...

Tags: pci, pci compliance, pci requires, address pci challenges, challenges, address, pci initiatives, retailers, data protection benefits

EBay aims to connect security officers via Red Team confab

2008-02-27 14:00:00 by Editor in Computerworld Security News

CISOs concerned about cybercrime trends and seeking common ground gathered this week in California at eBay's second Red Team security conference

Tags: ebay, cybercrime trends, common ground, california, week, cisos

EBay aims to help security officers through Red Team confab

2008-02-27 00:00:00 by Robert McMillan in Network World on Security

EBay is trying to help chief information security officers (CISOs) build a common front in the war against cybercrime

Tags:

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo