Infosecurity Opinions
Through Dark Clouds, a Ray of Light
Increasingly complex threats lead Raj Samani to conclude that the state of data security is worse off than it was a decade ago – but not all is lost, as he explains
Comment: Empower your Consumer to Earn their Trust
Being transparent with consumers and giving them control over their data makes good business sense. Unfortunately there is no one-stop solution. In this article Patrick Nielsen of Evidon looks at the compliance and security challenges of online and mobile advertising, arguing that empowering the consumer is key to commercial success
Comment: Cyber Warfare – The Modern Cold War
Ross Parsell of Thales UK discusses why cyber threats to the world’s critical national infrastructure are the modern-day Cold War weaponry, for which governments and militaries are rapidly increasing their defense budgets
Response: Beware the Nascent Cyber Insurance Market
The Oval Group’s Tom Whipp responds to a recent op-ed piece highlighting aspects of the rather immature cyber insurance marketplace
Comment: Big Data Is the Security Professional’s New Best Friend
Mark Seward of Splunk discusses the changing enterprise security landscape and the role machine data plays in identifying threats and providing greater visibility into system security
Comment: Cybercrime Comes to a Site Near You
The individual computing device is the new perimeter. All hackers need is one vulnerable person, and your entire organization is at risk, observes GreenSQL’s David Maman
Comment: Today’s Biggest Security Risk – Your CEO
Company leadership who underestimate the risks posed to data are standing in the way of stronger, more efficient security, says Clement Cazalot of docTrackr
Comment: Chief Legal Officer will be a Powerful Ally to the CISO of the Future
Guidance Software’s Sam Maccherola outlines how the CLO can provide an added perspective as overall corporate risk manager, when it comes to putting together a water-tight cybersecurity incident response plan that will protect an organization’s legal interests
Comment: Embrace the New EU Data Protection Laws to Keep the Consumer Safe
Proposed changes to the EU data protection laws have attracted some widespread criticism. Tim Critchley of Semafone remembers a similar protest about the introduction of PCI DSS regulations and says it’s time to stop complaining and consider the rights of the consumer
Comment: Parliamentary Porn Habits
Security analyst Bill Walker says the only scandal regarding recent revelations about the frequency of the UK Parliament’s porn surfing is the lack of web security training
Comment: Beware the Nascent Cyber Insurance Market
As security incidents grow in number and severity, organizations are not only relying on their own defenses to guard against losses, but are increasingly looking to insure themselves against those losses. However, all should be aware that the cyber insurance market is still in relative infancy, as Colin Tankard outlines
Cyber Resilience: Building a Defense Strategy that Works
The ISF’s Steve Durbin discusses how organizations can converge cybersecurity and risk management strategies to help deal with unknown threats in cyberspace
Comment: Finding Common Ground through Simulated Phishing Attacks
By helping users understand that they can be part of the security solution, Joe Ferrara of Wombat Security says simulated phishing attacks can mend the often difficult relationship between users and infosecurity teams by opening up lines of communication
Comment: Encryption is Critical for IaaS
When organizations move their data to the cloud, traditional security measures may not be effective. With some basic knowledge, Bill Hackenberger of HighCloud Security says companies can take advantage of Infrastructure-as-a-Service, while keeping their data private
Comment: Cybercrime Goes Back to the Future
Cybercrime goes back to its roots to infiltrate tomorrow’s organizations. Darren Turnbull of Fortinet looks at the importance of a unified approach and sandboxing as a key tactic in the fight against advanced persistent threats
Comment: Data Retention – The Privacy Threat Hidden in Plain Sight
The US may be reeling from revelations surrounding the NSA’s PRISM program but, as IVPN's Nick Pearson discusses, the next government program to threaten online privacy may originate from European shores
Say No to Digital Rights Management and Intellectual Property Rights?
Steve Mathews explores DRM options in a world where completely preventing the copying and distribution files is nearly impossible
Comment: Cybersecurity in a Post-prevention World
As long as we continue to incorrectly believe that we can simply block bad things, cybercriminals will win the battle, says Blue Coat’s Brian Contos. He suggests investing in incident detection and response to minimize the threat window following an incident, and to better understand what’s actually happened
Comment: Getting the Compliance Budget “Just Right”
A risk aware, long-term approach to regulatory compliance budgets is the path toward optimized spending. EventTracker’s AN Ananth explains his Goldilocks strategy
Go Ahead, Blame China
David Stupples contends China’s state-sponsored actors not only have the means, but also the motive to hack away at any organization’s intellectual property