Infosecurity Opinions

  1. Comment: Stopping Employees from Stealing Your Data

    Whether leaked intentionally or accidentally, the practice of information sharing has been known to cause problems. Sean Glynn of Credant Technologies examines how to limit the information users have access to without thwarting trust, and how encryption can play an integral part.

  2. Comment: Is key management the new compliance?

    Jon Geater, director of technical strategy for Thales and a co-founder of the OASIS KMIP key management group, considers the effects of focussing solely on compliance to form the basis of information security strategy

  3. Comment: Building a Bridge between Legislators and IT Firms

    Elizabeth Hyman, vice president of public advocacy at CompTIA, provides an overview of the recent launch of TechVoice.org, a new online community to discuss federal policy issues that directly impact the IT industry and to connect members of the industry with policymakers. She discusses key issues and provides examples of how TechVoice serves as an education and advocacy resource.

  4. Comment: Public vs. private sector information security

    More dedicated staff, yet less awareness: according to recent data, the private sector lags behind with regards to data protection, while public sector organisations lead the way. David Cowan, head of security at Plan-Net, explains how firms can improve their IT security and avoid losing money, clients and reputation.

  5. Comment: Securing the remote working environment

    Vodafone's Andy McFarlane examines how, through effective mobile and data management within a secure environment, communications can become an enabler of successful growth

  6. Comment: The Seven Habits of Highly Infected People, and Your Security

    Modeled after the popular self-help book, this article by NaviSite’s chief security officer, Allen Allison, discusses how to eliminate the most common and easiest to avoid habits that introduce security risks and governance violations that can imperil an organization’s sensitive data.

  7. Comment: War and Rumors of War in Cyberspace

    Craig Robinson, chief operating officer of GlobalSCAPE, argues that cyberspace has become a contested battlefield with long-term implications. Robinson discusses the potential for cybersecurity practitioners to learn from traditional defense practices, especially in defining durable policies and strategies for operating in the cyber domain.

  8. Comment: The do’s and don’ts of data classification

    Data classification is often referred to as something of a black art in the field of IT risk management as Sean Glynn, VP product development with Credant Technologies, explains…

  9. Comment: Some Documents Require Fine-Grained, Dynamic Security

    Knowledge workers are increasingly using their abilities to discover patterns where none were previously known: to find connections across disparate sources of data, or to identify suspicious behavior on the basis of anomalies in data streams. Open, flexible access to documents is essential for this process, and there is no way back to a world of siloed information. But, as IBM’s Joshua Fox examines, this very openness increases the risk of exposing sensitive data about an organization or its customers.

  10. Comment: Security breaches cost health care industry £4bn annually

    By adopting a secure file transfer solution and abandoning risky file-sharing practices, an organization can better protect its confidential data and simplify compliance with industry regulations and data-security laws, says Paul Steiner, managing director, Accellion EMEA

  11. Comment: Reducing Document Security Risks without Raising User Resistance

    Recent high-profile leaks have served as a wake-up call to CISOs worried about whether their sensitive documents could be at risk of intentional or accidental disclosure. But forcing unwieldy policies on employees can be disruptive. Dr. Claudia Böttcher of Brainloop says the answer lies in adopting methods that make document security transparent, or second nature.

  12. Comment: The state of encryption

    Dave Everitt, general manager EMEA at Absolute Software, examines the potential problems with relying on encryption for data security, and puts forward the case for a layered approach to safeguarding information.

  13. Comment: Security Secrets Your IT Administrators Don't Want You to Know

    Philip Lieberman, CEO of Lieberman Software and well-known cybersecurity expert, gives insight into what's lacking in most organizations' identity management, password, access and auditing policies.

  14. Comment: Will High-Speed Malware Crash the Internet?

    Napatech’s Daniel Joseph Barry looks at what the challenges are, and what can be done, to avert the economic impact of an internet collapse.

  15. Comment: Security must emerge from the shadows

    Andrew Wyatt, chief operating officer at software security firm Clearswift, explains why overhauling outdated ‘stop-and-block’ attitudes to security is vital in today’s business environment, and how bringing IT security out of the shadows within an organisation can reap rewards

  16. Comment: Rewards for Hacking – Good, Bad or Ugly?

    If a hacker finds a flaw in your program, then the bounty paid out might not be enough. Anthony Haywood of Idappcom gives his thoughts on the bug bounty trend

  17. Comment: Sharing may cut costs, but IT security can’t be forgotten

    Whatever the method, reducing IT costs through sharing of resources should not be at the expense of security according to Steve Jenkins of Q1 Labs

  18. Comment: Keeping Your Organization Safe from the WikiLeaks Phenomenon

    The WikiLeaks saga is causing many CISOs to wonder whether their organization is at risk from insiders who wish to embarrass their employer by leaking sensitive information. This has prompted Gord Boyce, CEO of ForeScout, to ask: What can be done to stop a determined insider?

  19. Comment: Defining a security blueprint for the enterprise

    On 27 October, 2010, eleven key decision makers in information security and risk management gathered at London’s famous Gherkin for an enterprise security roundtable debate organised by independent IT consultancy, Glue Reply. The roundtable is a periodic event aimed at thought leaders with responsibilities in large enterprises. The aim of this debate was to explore how to build a real business case for enterprise security architecture and how to define a security blueprint to drive the future of information security and risk management within the enterprise.

  20. Comment: ‘Tis the Season for Cyber Scamming

    A great online sale can be ruined if hackers steal your credit card number. Nicholas J. Percoco, senior vice president and head of Trustwave’s SpiderLabs, shares data security best practices for safe e-commerce, such as looking for “trust” indicators like SSL certificates, and how to help prevent cyber theft now and through the New Year.

Why not watch?

  1. New Cyber Regulations: What it Means for UK and EU Businesses

  2. Dispelling the Myths of Defense-Grade Cybersecurity

  3. Navigating Exposures in Energy ICS Environments

  4. Mastering Australian Privacy Act and Essential Eight While Improving Cybersecurity Posture

What’s hot on Infosecurity Magazine?