security enabler | paulmudgett.com

Posts tagged: security enabler

New CyberSecurity Coordinator points to private sector solutions

Once again I find myself liking White House Cybersecurity Coordinator Howard Schmidt’s approach even if I think his position is weakened based on placement, authority, etc. In a Bill Brenner article today on CSOonline, Schmidt points to the defense against the wide range of threats, including coordinated attacks, to be best lead from the private [...]

Wednesday April 7th, 2010 in , cyber czar, information security, National Cyber Security, security enabler, security vision | 1 Comment »

Be an Agile Defender

Anti-virus software is based on signatures of known viruses. It’s a reactive product by nature and it should be known by now that these products are ineffective against new viruses and new variants. That said, why test AV products against attacks they haven’t seen and then make a stink about it in a ComputerWorld article? [...]

Thursday March 18th, 2010 in , data protection, information security, security enabler, security scotoma, security vision | No Comments »

Back to Basics

I just read an article “Basic security measures do wonders” and it drove home a point that seems to have been lost with the inundation of terms such as “CyberWar” and “Advanced Persistent Threat”. While we spend a lot of time implementing new technologies or applying frameworks, we sometimes forget that applying basics and using [...]

Thursday March 11th, 2010 in , information security, security enabler, strategic asset | 1 Comment »

Risk-based Information Security

How do you even start protecting your information assets if you don’t have an understanding of the risk to them? I would venture to say… you don’t. It’s difficult for some to get started down this path because they quickly get overwhelmed with the task at hand. Many times, a good effort gets set aside [...]

Monday December 28th, 2009 in , information security, ISO 27001/27002, risk, security enabler, vulnerability management | No Comments »

Baby Steps – Information Security Process Improvement

Organizations can quickly become overwhelmed when trying to implement a comprehensive information security program. There are many barriers. Cost. Time. Competency. As I’ve posted before, security is an ongoing process and needs to be in order to deal with the changing business environment and evolving threat landscape. Instead of implementing the very best (and most [...]

Friday November 13th, 2009 in , data protection, information security, ISO 27001/27002, security automation, security enabler, security vision | 2 Comments »

Security Scotomas

It it a young lady or an old woman? Is it both? The potential for information security to enable business often gets lost on our own scotomas. We get so locked into our world of information protection that we fail to see alternatives and opportunities. The inability to see more than one option is the [...]

Monday September 28th, 2009 in , security enabler, security scotoma, security vision | 3 Comments »

paulmudgett.com

Information Security & Business Leadership