Infosecurity Opinions

  1. Comment: File Sharing Opens the Box of Information Security

    Sharing may be part of internet culture, but it does not sit well with data governance. David Reed of the Data Governance Forum argues that business executives need to be reminded of the rules

  2. Comment: May the (En)Force(ment) Be With You – Security Lessons from Star Wars

    From applying security policies to DLP and effective user authentication, there are many infosecurity lessons to be learned from the classic space opera. Terry Greer-King of Check Point shows how companies can avoid the Empire’s mistakes

  3. Comment: Tackling the Geolocation Cookie Imperative

    ISACA’s Ramsés Gallego discusses the new EU cookie legislation and the effect it will have on companies that provide location-based services

  4. Comment: Public Sector Security – Time to Step into the Breach

    Adam Evans of NetIQ looks at how public sector organizations can make sure that private data remains private

  5. Comment: Enterprise Log Managers – An Unsexy, But Vital Tool

    Representatives from ISACA and CA Technologies look at why enterprise log managers are an essential element of IT security that can also provide value through non-IT security use cases

  6. Comment: There’s Much to Learn from Recent Data Security Breaches

    SafeNet’s Jason Hart looks at what the security industry has learned from last year’s data breaches and reiterates the importance of encrypting all data to ensure comprehensive protection against the latest security threats

  7. Comment: The Death of the CISO?

    At a significant crossroads, the infosec profession must adapt to avoid failure says Mark Brown of Ernst & Young

  8. Comment: Protecting Critical Network Systems and the Information Within

    Benga Erinle, president of 3eTI, discusses the shift in focus from securing physical facilities to warding off cyber attacks against critical infrastructures – and why our reliance on control systems makes us more vulnerable than ever to attack

  9. PCI in the Cloud: Ready, Willing and Able?

    Andrew Hay discusses what you can expect from the ‘PCI compliant’ cloud provider

  10. Token Debate: Battle Tested, Industry Approved

    Their ability to remain nimble is why RSA’s Dan Schiappa believes tokens are the past, present, and future of two-factor authentication

  11. Token Debate: Worthless, Worthless

    This sums up the opinion of ISACA’s Richard Hollis when it comes to the value of token-based authentication

  12. Comment: How Decentralized Encryption Can Impair Security

    To protect digital assets and meet regulatory requirements, many organizations secure sensitive data with point encryption solutions. Vormetric’s Ashvin Kamaraju explains the risks and challenges associated with decentralized encryption key management, and the role of interoperability standards in establishing a centralized key management infrastructure

  13. The Strange Case of Indian Censorship in Oman

    Jean-Loup Richet explains how researchers in Canada have come across a new example of the “upstream filtering” phenomenon, in which internet content is blocked in one country due to censorship imposed by another

  14. Comment: Effective Smart Grids Require Multiple Layers of Security from the Outset

    Michelle Lewis, smart grid specialist at Symantec, explores the benefits and challenges of smart grids and outlines the strategies needed to secure and protect them

  15. Comment: Cloud Security is not a Myth

    Security is frequently cited as the primary reason why organizations are reluctant to adopt public cloud offerings. But is the public cloud inherently insecure? With the correct approach to security architecture, FireHost’s Chris Hinkley argues that securing the public cloud is possible

  16. Comment: The EU’s Proposed 24-hour Breach Disclosure Rules will Drive Automation

    The EU’s proposed revisions to the Data Breach Directive reminds us that it’s about respecting customers, not just ticking boxes, opines Michael Hamelin of Tufin Technologies

  17. Comment: Cybersecurity and Information Sharing Is a Two-way Street

    Strengthening cybersecurity cooperation between government and industry is a growing necessity. As threats evolve rapidly, ongoing information sharing will serve a critical role in keeping public and private networks safe. Entrust’s Dave Rockvam explores the current landscape and areas for improvement

  18. Comment: Why You Need a Google Security Policy

    Through its many services, Google can track your browsing, scan your emails, read your documents, listen to voicemails, analyze your calendar, and more – all in the name of better connecting sellers to its users. Babak Pasdar of Bat Blue Networks says this feeding of the Google Monster must be monitored and controlled

  19. Comment: Passwords Are the Achilles’ Heel of Cloud Security

    To address single sign-on (SSO) at cloud scale, Ping Identity’s Patrick Harding says IT administrators, security architects and developers must focus their energy on solving the problem with secure standards such as SAML, rather than implementing Band-Aid solutions like password vaulting

  20. Comment: Securing SharePoint's Content Blind Spots

    Storing sensitive information inside SharePoint doesn’t have to be scary, claims Kurt Mueffelmann of HiSoftware. By implementing governance policies that couple education with compliance and security technologies, he believes organizations can store and share information inside SharePoint with confidence

Why not watch?

  1. Identifying Concentration Risk and Securing the Supply Chain

  2. Navigating Exposures in Energy ICS Environments

  3. Dispelling the Myths of Defense-Grade Cybersecurity

  4. Enhancing Software Supply Chain Management: A DORA-Focused Approach

What’s hot on Infosecurity Magazine?