Infosecurity Opinions

  1. Comment: Building a Risk-aware, Cyber-secure Culture

    Using technology solutions to complement your security awareness programs is simply not enough, says IBM’s Chris Nott. You must go further and explain the risks to your employees, and why the technical controls were put in place

  2. Safe and Secure Online: Make it Count

    Tim Wilson, lead UK volunteer for the (ISC)² Safe and Secure Online program and assistant director ICT, NHS East London and City, tells us what he does, what he hears, and why you too should get involved in Safe and Secure Online

  3. Comment: The Risks of Generic Approaches to Employee Information Security Awareness

    Keith Ducatel of Article 10 talks about the dangers of off-the-shelf information security policies and training

  4. Comment: Poor Information Risk Assessment Is Worse than Doing Nothing at All

    Information risk assessment should be second nature to security practitioners, and yet too few of us understand what it really takes to do it well – and few organizations have a world-class capability in place. Andrew Wilson explores some of the reasons why this is the case and what we need to do to get it fixed

  5. Comment: Securing BYOD is More Than a One-step Process

    BYOD is no longer a trend, it’s a reality says Frank Andrus of Bradford Networks. Here he explains why implementing BYOD securely requires a comprehensive blueprint, and cannot be done through a single technology solution

  6. Comment: The Missing Link from DLP

    Solutions to prevent data loss need to involve the data owners themselves, so they can take appropriate actions to remediate risks before data is leaked. Traditional DLP technologies alone cannot achieve your security and governance goals, says David Gibson of Varonis

  7. Comment: Avoid the Inherent Risks of Consumer Gadgets and Email

    Consumer gadgets and corporate email can be a risk to information; John Thielens of Axway looks at how this can be avoided without banning consumer devices altogether

  8. Comment: It’s Not about Network Security, It’s about Business Security

    Gidi Cohen of Skybox Security explores the challenges information security executives face, and provides key steps they can take to tune their existing security infrastructure to be more effective and efficient

  9. Comment: Defeating APT in the Cyber Trenches

    Jim Butterworth of HBGary argues that instead of building bigger digital walls to secure their organizations, CSO’s must instead build resilience by combating advanced persistent threats (APTs) where they least expect them – already firmly established inside the network

  10. Comment: Mobility Goes Mainstream

    Infosecurity welcomes Patricia Titus, VP and CISO of Symantec, as the newest member of our Editorial Advisory Board. Titus tells us why following security best practices is the key to a successful mobility strategy

  11. Protecting Distributed Network Infrastructure Availability across a Cloud-Connected Workforce

    Robert Waldie of Opengear looks at three strategies learned in the data center to secure distributed sites against breach-of-availability incidents

  12. Comment: Turn to Military-grade Security

    Key industrial infrastructure is becoming as vulnerable as corporate data to attack, driving commercial organizations toward defense-grade IT solutions for protection. Arun Subbarao of LynuxWorks explains the wisdom behind the strategy

  13. Comment: Do You Know Where Your Data Is?

    As businesses increasingly bring in mobile devices for their staff, data can no longer be pinpointed to the. Siân John of Symantec discusses the threats to businesses and how employing data encryption on mobile devices brings a new level of security to sensitive business information

  14. Comment: Taking the Ethical High Road

    Marcus Ranum of Tenable Network Security outlines how the IT security industry can ensure its integrity by maintaining a strong code of ethics

  15. Comment: Visibility Is an Essential Component to Data Governance

    Addressing the volume of organizational data requires a balanced approach, which includes locating and identifying data by category. This visibility is the first step in identifying risk, says Gerard Curtin of PixAlert

  16. Comment: Flow-based Monitoring Provides Security for the BYOD Environment

    Lancope’s Joe Yeager discusses the benefits of leveraging flow-based data collection and analysis for mobile device security in BYOD environments

  17. Comment: BYOD…But Keep the Data in the Office

    KPMG CIO Advisory’s Martin Lunt believes BYOD has significant benefits for organizations, providing clear security policies are in place from the start

  18. Comment: You Are the Weakest Link – In the Data Protection Chain

    Information is the lifeblood of any organization, and in today’s world, we must ensure it is properly protected. There are a multitude of technological methods to secure our information, but any chain is only as strong as its weakest link says Richard Hall of CS Risk Management

  19. Easily Enhancing the Security of Mobile Devices

    ISACA advisor John P. Pironti outlines five easy steps that will promote more secure use of mobile devices

  20. Comment: Under BYOD Pressure

    Feeling pressure to implement a BYOD strategy? Start getting ready now, because BYOD is inevitable. But don’t pull the trigger on that shiny new miracle solution before you’ve covered the basics and know that it is right for you says Rory Higgins of Mancala Networks

Why not watch?

  1. Enhancing Software Supply Chain Management: A DORA-Focused Approach

  2. AI Agents and the Evolving Landscape of Digital Identity

  3. Auditing AI Risk: Essential Strategies for IT & Compliance Leaders

  4. Cyber Resilience in the AI Era: New Challenges and Opportunities

What’s hot on Infosecurity Magazine?