Infosecurity Opinions

  1. Comment: Exposing the Myths of Access Rights Management

    Managing access rights is time-consuming and often considered a mundane task. Nevertheless, making sure only the right people can access company data is a business-critical function. Christian Zander of protected-networks.com addresses a number of ‘myths’ he has encountered when discussing this issue with senior IT management across Europe.

  2. An Argument Against the Licensing of Information Security Professionals

    A licensing scheme for information security professionals would create more issues than it solves, according to Hord Tipton

  3. An Argument in Favor of Licensing Information Security Professionals

    Allan Boardman says it’s time to license information security professionals and join the ranks of other esteemed professions

  4. Comment: Authentication – The Text Factor

    Lars Nielsen of SMS PASSCODE explains why multi-factor authentication is moving from traditional, token-based preset codes to real-time connected and mobile systems, and the provisioning and security benefits it offers

  5. In Cyberspace, No One Can Hear You Scream

    Royal Holloway’s Geraint Price and Keith Martin call for innovative approaches to securing cyberspace that go beyond the current practitioners’ toolkit

  6. Comment: Making the Journey from BYOD to BYOPC

    Is the laptop evolving into a tablet, or is the tablet evolving into a PC? As the device landscape blurs, Yorgen Edholm of Accellion urges enterprises to face the new challenges of how content is secured, synchronized and shared on the new generation of mobile devices

  7. Comment: Which CISO Will Lead your Organization to Success?

    Choosing the right talent for one of the most challenging jobs in the cyber economy can be a tough job, but what kind of CISO should you be looking to recruit to lead your organization? Amar Singh provides his model CISO for your consideration

  8. Comment: How to Fight Back against Cybercriminals

    Jason Hart of SafeNet discusses the ‘secure breach’ concept based on a data-centric security approach, and how this philosophy can be implemented to protect data in the face of hacker exploits

  9. An Overview of E-Mail Protection Systems

    Alexander Zatsepin of Protection Technology Research provides a guide to email security technologies and discusses the features you should look for to suit your organization's needs

  10. Comment: Internal Restructuring Can Expose Security Risks

    Marc Lee of Courion explores the hidden risks that organizations face when making internal changes and significant job cuts, highlighting the importance of access risk management to prevent them

  11. Comment: Malicious QR Codes Jeopardize Your Security

    Now that QR codes are in the mainstream, they are also fast becoming a favorite tool for attackers seeking new infection vectors. That is why education for the QR code end-user is imperative, says Tripwire’s Dwayne Melancon

  12. Comment: Why Hire a Hacker?

    Some organizations employ hackers to prevent criminals from hijacking their systems. But many are still afraid to hire a hacker and are not sure what ‘type’ of hacker they should recruit. AlienVault’s Dominique Karg looks at what kind of hacker an organization should employ and what their knowledge can offer in terms of increased security

  13. Comment: A Tiered Approach to BYOD Fulfillment

    Enterprise mobility and BYOD policies present new IT challenges and security threats for managing endpoints, safeguarding network resources and protecting sensitive data. ForeScout’s Scott Gordon says there is no one-size-fits-all answer, so a layered security model can and should be applied

  14. Comment: Employ Data-centric Security to Tackle the Insider Threat

    Watchful Software’s Charles Foley discusses how data-centric security approaches help keep sensitive information safe from security breaches

  15. Comment: Make Internal and External Threats a Boardroom Priority

    Cyber-Ark’s Udi Mokady discusses the threats facing organizations today and considers whether internal or external attacks are a greater risk to modern business

  16. Perimeter Security: In Memoriam

    Paul Simmonds submits his obituary for perimeter-based security strategies

  17. Perimeter Security: Evolved, Not Dead

    Perimeter security strategies must adapt to today’s realities, but the concept itself is not entirely obsolete, says Scott Gordon

  18. Comment: Avoid the Seven Deadly Sins of Cloud Computing

    The benefits of cloud computing services are now well established; however, uncertainty still surrounds several of the inherent risks. The ISF’s Steve Durbin examines what organizations can do to realize the benefits of the cloud, while avoiding the information security bear-traps that exist

  19. Comment: Overcoming a Year of Vulnerability

    Mark Dunleavy of Informatica takes a look back at 2012, and explores why it’s being described as a year of vulnerability. We have seen data breaches galore over the past 12 months, so he offers guidance in how to make 2013 the year of data breach prevention

  20. Comment: Contactless Payments – Retailers Must Learn to be More Secure in 2013

    Calum MacLeod of Venafi takes a closer look at near-field communications, which many retailers are planning to implement this year, and finds some potential pitfalls in their plans for contactless payments

Why not watch?

  1. Safeguarding Critical Supply Chain Data Through Effective Risk Assessment

  2. AI Agents and the Evolving Landscape of Digital Identity

  3. How to Update Your PAM Strategy to Protect Hybrid Cloud Infrastructures

  4. Auditing AI Risk: Essential Strategies for IT & Compliance Leaders

What’s hot on Infosecurity Magazine?