SEARCH RESULTS
 
Showing 1-10 of 819 records
 
Expand article

What Are You Managing Towards? (And On Disproving Risk Management)

The Article has images
2008-06-03 14:41:11 by Alex in RiskAnalys.is
...Management Process. Three quick things to anyone who has read it and is visiting our blog for the first time We dont believe that the goal of Quantitative Risk Analysis is to be precise. We believe the goal is to be accurate. Subtle but important difference FAIR can be used both Quantitatively and Qualitatively. The decision on which method...
 
Tags: management, risk management, term risk management, management focuses, management approach, risk management process, patch management, cost management, upper management
 
 
 
 
Expand article

Risk Management and Analysis Standards Update

2008-06-17 16:51:27 by Alex in RiskAnalys.is
 
...Management, and RMI has a new website CISCO WEBINAR UPDATE First, Jacks Webinar with Cisco is Thursday . If you were lucky enough to get a slot, be sure to catch it. If you didnt get a slot but would like to still go, let me know (info at riskmanagementinsightdotcom - subject Webinar RISK MANAGEMENT STANDARDS AND FAIR Second, The Open Group...
 
Tags: risk management, risk management departments, risk management effort, standards, risk, risk management efforts, risk management issues, security standards, risk management standards
 
 
 
 
Expand article

(Not Really) Stateful IT-GRC Inspecting Threat Management At Gigabit Speeds

2008-07-22 14:41:00 by Alex in RiskAnalys.is
 
...Management Now usually when I see a term like this, I can only imagine that such things are the byproduct of rapidly decaying brain cells. In my mind I imagine theres a conference room somewhere with some marketing types all hopped up on the vapors from industrial solvents spewing terms like protectivity or advanced adaptive deep packet...
 
Tags: pci risk management, risk management, pci dss, pci dss compliance, risk, risk inherent, management, pci, pci concerns
 
 
 
 
Expand article

Vulnerability Management - Yeah Baby, Groovy!

The Article has images
2008-03-21 14:02:49 by HASH0x8b46e44 in StillSecure, After All These Years
...Management Tools . I felt like I had been in suspended animation for years and just woke up. I have not seen an article on vulnerability management in forever and ever. There was nothing earth shattering in this article. Meat and potatoes VM. That is vulnerability management, not virtual machines. The fact that VM is more commonly associated...
 
Tags: vulnerability management, term vulnerability management, vulnerability management tools, austin powers moment, article, infosec world conference, speaks volumes, trendy anymore, virtual machines
 
 
 
 
Expand article

Is Risk Management a People Problem?

2008-03-10 15:45:47 by Alex in RiskAnalys.is
 
...Management. Arthur of Emergent Chaos was kind enough to offer his opinion when I briefly chatted him about the subject. When asked, What do you think people mean they say security is a people problem, he replied Mostly, I think it means that people are inherently trusting and also lazy, so things like phishing and soc. engineering tend to...
 
Tags: risk management, risk, people, risk management issue, impacts people, security, security technology, risk tolerance, people lessons
 
 
 
 
Expand article

Vulnerability Management - Yeah Baby, Groovy!

The Article has images
2008-03-21 15:02:49 by ashimmy in StillSecure, After All These Years
...Management Tools . I felt like I had been in suspended animation for years and just woke up. I have not seen an article on vulnerability management in forever and ever. There was nothing earth shattering in this article. Meat and potatoes VM. That is vulnerability management, not virtual machines. The fact that VM is more commonly associated...
 
Tags: vulnerability management, term vulnerability management, vulnerability management tools, austin powers moment, article, infosec world conference, speaks volumes, trendy anymore, virtual machines
 
 
 
 
Expand article

Cross-Device-Type Log Management vs Device-Specific Log Management

2008-06-02 14:38:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...management approach (and still not look like a money- and time-wasting and idiot :-)). For example, you might be motivated by the fact that tools that can handle one specific type of log data (e.g. Windows-only, web server-only or Cisco PIX-only) are usually many times less expensive than cross-device log management tools . The table below...
 
Tags: logs, pci relevant logs, log management, database logs, logs remain, gather windows logs, device-specific log management, server logs, type
 
 
 
 
Expand article

2008 - The Year of IT Risk Management?

2008-01-04 13:23:00 by Ryan Shopp in practical risk management
 
...Management (what I mean by "true" is the message is coming from companies who didn't adjust their marketing to be en vogue - e.g., SIEM products or Vulnerability Assessment products Before IT Risk Management was "cool" Securityworks has been out their working away on it (for over 4 years now One of my favorites that highlights this...
 
Tags: risk management, risk management moves, risk, risk management strategy, accept risk management, management, risk assessment framework, security, information security
 
 
 
 
Expand article

Defining Risk Management

2008-02-05 18:52:39 by Posted By: Paul Proctor, Research VP in IT Leaders - Security and Risk Management
 
...management as both a discipline and a reference has led to confusion in terminology and applicability. The word "risk" has proliferated in titles for traditional roles and responsibilities such as security, business continuity, privacy and many operations functions. In some cases, this is nothing more than a title change with no fundamental...
 
Tags: risk management, risk, enterprise risk management, led organizations, led, organizations, risk measurement, traditional, traditional operational roles