Resources for IT Managers
Theft of confidential information is a risk to the business and IT plays a large role in protecting the data. Not all data is electronic though. Files that identify customers and employees, Social Security numbers, credit card information and other account data are just some of the forms of sensitive data a company must protect. [...]
The current economic environment has caused many IT departments to tighten their belts. But have they taken it too far? Do they risk not being able to meet the present and future needs of the business for the sake of cutting the bottom line or even put the company at risk? A recent survey commissioned [...]
Cisco today announced new additions to its portfolio that bolster the network security infrastructure and the delivery of cloud security services, thereby enabling businesses to collaborate with greater confidence even as their workforce and partners become increasingly mobile and interactive. Today’s announcement, being made at the RSA Conference in San Francisco, comes at a time [...]
RSA Conference® 2009 / San Francisco — During the opening keynote at RSA Conference 2009 Art Coviello, President of RSA, The Security Division of EMC cautioned that the global cyber-threat continues to escalate and online fraudsters are more organized, collaborative and effective than ever. He addressed major forces such as the economy and emerging technologies [...]
Configuresoft, Inc., a leading provider of enterprise server configuration management solutions, today announced that Configuresoft Director of Corporate Strategy and recognized expert in IT configuration and systems architecture George Gerchow, ITIL, CISSP, CCNA, MCPS, SCP, has authored an intensive, accelerated course in ITIL for security management for the highly-regarded SANS (SysAdmin, Audit, Network, Security) Institute. [...]
While information security remains a top priority for eight in ten IT professionals surveyed, many companies seem to be underestimating one of the most significant IT security threats – end user error. According to CompTIA’s 7th Annual Trends in Information Security survey, human error is the primary cause of the most severe security breaches, yet [...]
A consortium of federal agencies and private organizations have released Version 1.0 of the Consensus Audit Guidelines (CAG) that define the most critical security controls to protect federal and contractor information and information systems. For each of the 20 controls, the experts identified specific (actual) attacks that the control stops or mitigates, illuminated best practices [...]
The IT Policy Compliance Group (IT PCG), of which ISACA is a sponsor, today announced the availability of its latest benchmark research report titled, “Managing Spend on Information Security and Audit to Improve Results.” Based on research conducted with more than 2,600 firms, the study reveals that 68 percent of firms are under-spending on information [...]
This Valentines Day you could be left with wonderful memories and a hard to remove Trojan on your computer. Many anti-virus vendors are issuing warnings about a new malware distribution scheme that targets those celebrating Valentine’s Day. It is the Win32/Waledac worm in a new form being distributed via spammed web pages that prompts users [...]
ISACA, the Information Systems Audit and Control Association has just released an exposure draft of of their initiative “Enterprise Risk: Identify, Govern and Manage IT Risk, The Risk IT Framework”. Covering 94 pages the document frames IT risk as a business risk and goes into extensive detail on a framework for dealing with it. Packed [...]