Infosecurity Opinions
Employees are the Missing Piece of the Security Puzzle
Security policies will not be successful without employee compliance, but almost a quarter of employees believe security is not their responsibility. Fordway’s Richard Blanford advises organizations to develop realistic security policies to encourage employee buy-in and use solutions such as DLP and single sign-on
Dealing with the Stress of an Infosec Job
IT security managers are pressured by the many demands of a job that requires them to deal with unpredictable technical issues, systems threats, administrative tasks, strict deadlines and certification requirements. Stress cannot be prevented – but it can be minimized with pre-planning and good communication, says Daniel Brecht
Data Protection Starts with Everyone
You and your co-workers are the final frontier in an organization’s breach defenses, writes Roy Peretz
2015 State of the Union Address: The Implications
The current proposals are the equivalent of putting up more security cameras instead of buying a better safe, says Bill Solms
Security Audit Policy is Essential in Ensuring Network Security
Failing an audit in an industry with tight regulatory compliance could have serious consequences – so make sure you’re on the ball, says Rupesh Kumar
Tackling A False Sense of Device Security
Vince Mazza addresses users’ security misconceptions surrounding smart devices – regardless of brand, he says, consumers need to be more vigilant when it comes to protecting their personal data
The SOC Lone Ranger: Achieving More with Less
Working around lack of security budget and resources doesn’t have to be so bad, argues Joe Schreiber
How to Reward Performance for Security Professionals
Senior roles in corporations frequently come with performance-based pay schemes attached. Security professionals should put professionalism first and not aim to please for the sake of a reward, says Peter Berlich
Why ‘Zero Trust’ Might be the Best Approach for Your Organization
François Amigorena takes a brief look at the core issues behind an ever increasing landscape of IT security breaches and makes the case for ‘zero trust’
Educate Your Staff to Spot Dropbox Phishing Campaigns
There has been a noticeable surge in cyber-criminals using Dropbox to deliver malware and to hide attacks so they can bypass antivirus software and fool recipients into opening malicious links and attachments. Ronnie Tokazowski asks why Dropbox is so attractive to cyber-criminals, and explains how to educate your staff
Is Threat Intelligence Actually Fueling Prevention?
Patrick Peterson explains how criminals are penetrating current security controls and describes intelligence that can detect attacks in real-time and provide the ammunition businesses need to take action
Do Not Accept the Myth that Cyber Thieves are Always One Step Ahead
Adopting an information-centric approach that enables real-time monitoring of data at rest will enable organizations to better manage the risk associated with data, writes Greg Sullivan
Three Steps to Ensure Bigger Spend Translates to Better Security
Ensuring maximum capability per dollar spent is essential when implementing security measures, argues Adam Meyer
How UK Businesses Can Cope with the Shortage of Cybersecurity Skills
Chris Sullivan asks whether organizations could use other ways to mitigate cybersecurity risk despite the skills shortage
Not Just Another Token Solution to Data Residency Issues
David Canellos discusses growing concerns around data residency and data sovereignty regulations as they relate to cloud services
How Mobile Biometrics is Fundamentally Changing Human Identification
Mobile biometrics is rapidly becoming a key human identification platform, transforming how people access business and personal information, says Mohammad Shahnewaz
Will the Bash Bug Be the Grinch that Steals Christmas?
Patches may have been installed, but the Bash bug could be a very real threat to retailers and manufacturers this holiday season, says Patrick Upatham
How You Can Secure Your Company and Your Career
Communication skills and engagement styles, rather than a pure focus on technical knowledge and qualifications, are essential traits for infosec pros, argues Jason Waterman
Securing the Connected Supply Chain
Opening enterprise networks to supply chain partners means more potential back doors into systems. Firms must apply automation to network connectivity management to minimize the risk of serious security breaches, argues Reuven Harrison
How Do You Solve a Problem Like Tor?
We need to protect those that legitimately need internet privacy, while prosecuting those that abuse those networks that make up the dark web. But is it possible? Colin Tankard investigates
