WHITE PAPER - This white paper discusses risk management as a key process in designing security architectures, including a better way for security managers to approach the security ROI issue.
Posted: October 14, 2008 | Published: October 11, 2008


Topics:  Business Structures | Network Security | Risk Management | ROI | Security Infrastructure | Security Managers | Security Policies | Security Spending

JOURNAL ARTICLE - Does risk management make sense? Experts Bruce Schneier and Marcus Ranum debate whether risk management is an appropriate strategic direction for information security professionals to follow.
Posted: October 14, 2008 | Published: October 1, 2008


Topics:  Business Processes | Information Management | Information Security | Risk Management | Security Best Practices | Security Managers | Strategic Planning

JOURNAL ARTICLE - Read what security people have to say. They want to be heard. They want to talk to the CIO, whisper in the CFO's ear, croon to the board, and scream at users. Problem is: an appropriate forum isn't always available. This article makes one available.
Posted: October 14, 2008 | Published: October 1, 2008


Topics:  Business Process Management | Enterprise Resource Management | Information Security | Risk Assessment | Security Best Practices | Security Industry | Security Managers

JOURNAL ARTICLE - Read this interview to learn more about Bill Jiminez, systems architect at the University of the Pacific, and how he has to balance security with the desire of faculty and students for openness.
Posted: September 15, 2008 | Published: September 1, 2008


Topics:  Access Control | Active Directory | Data Management | Password Management | Passwords | Security Best Practices | Security Managers | Security Policies | University Programs

TRIAL SOFTWARE - Check out this free IT download of Tripwire's ConfigCheck and experience the benefits of greater security for VMware's ESX hypervisor.
Posted: July 31, 2008 | Published: July 31, 2008


Topics:  Business Intelligence | Compliance (Systems Operations) | ERP | Security | Security Managers | VMware

JOURNAL ARTICLE - This journal article explaings how information flows through business processes in an orderly fashion and that security must flow right along with it.
Posted: July 25, 2008 | Published: July 1, 2008


Topics:  Security Architectures | Security Audits | Security Best Practices | Security Hardware | Security Industry | Security Infrastructure | Security Management | Security Managers | Security Software | Security Spending | Security Standards | Security Systems | Security Threats

JOURNAL ARTICLE - There may not be a job in corporate America that requires a more diverse skill set than that of a chief information security officer. Read this to become a reall know-it-all.
Posted: July 24, 2008 | Published: July 1, 2008


Topics:  CISOs | Security Architectures | Security Audits | Security Best Practices | Security Hardware | Security Industry | Security Infrastructure | Security Management | Security Managers | Security Software | Security Spending | Security Standards | Security Systems | Security Threats

JOURNAL ARTICLE - Shutting down unneeded services, ports and accounts makes Windows Server 2003 tough to beat.
Posted: July 24, 2008 | Published: July 1, 2008


Topics:  Hackers | IIS | Security Architectures | Security Audits | Security Best Practices | Security Hardware | Security Industry | Security Infrastructure | Security Management | Security Managers | Security Software | Security Spending | Security Standards | Security Systems | Security Threats

JOURNAL ARTICLE - In the four years since it was founded, the Jericho Forum has promoted a new approach to information security, one that takes into account that traditional hard boundaries between the company and the rest of the world are fast dissolving.
Posted: July 24, 2008 | Published: July 1, 2008


Topics:  Information Management | Information Security | Security Architectures | Security Best Practices | Security Hardware | Security Industry | Security Infrastructure | Security Managers | Security Policies | Security Software | Security Spending | Security Standards | Security Systems | Security Threats

JOURNAL ARTICLE - Sarbanes-Oxley empowered information security professionals with the clout they'd sought for so long.
Posted: January 11, 2008 | Published: January 1, 2008


Topics:  Information Security | Security Industry | Security Managers

JOURNAL ARTICLE - Information security has matured as a profession in a mere 10 years, despite waging an endless game of catch-up with threats, legislation and the demands of business.
Posted: January 11, 2008 | Published: January 1, 2008


Topics:  Information Security | Security Industry | Security Managers

JOURNAL ARTICLE - The SANS Institute's WhatWorks program identifies three critical areas of concern for security managers.
Posted: April 3, 2007 | Published: April 1, 2007


Topics:  Application Security | Hardware Selection | Penetration Testing | Secure Application Development | Security Event Management | Security Managers | Software Selection | Surveys | Vulnerability Assessments | Wireless Security

JOURNAL ARTICLE - As vice president of technology and process at Arizona Tile, Shelly Barnes does not have a CSO to rely on. Barnes has to make the most of the SMB's resources to handle security.
Posted: April 3, 2007 | Published: April 1, 2007


Topics:  Information Security | Security Managers