May 2014

May 30, 2014 30 May'14
CIOs trumpet top-down, proactive digital enterprise security

In a world where digital enterprise consumers connect apace and data is currency, CIOs and compliance officers find they must take a proactive security approach. Continue Reading
May 30, 2014 30 May'14
CSO: System logging a vital computer security tool

Tenable Network Security CSO Marcus Ranum reveals that data-driven intelligence is not as critical as system logging to security strategy. Continue Reading
May 22, 2014 22 May'14
Corporate culture plays huge role in SEC investigation, enforcement

Four years ago, the Securities and Exchange Commission announced an initiative that offered incentives for assisting with SEC investigations and enforcement. The goal was to help investigators gain ... Continue Reading

May 20, 2014 20 May'14
Twitter chat: Develop a risk profile for better breach prevention

In this #GRCchat recap, a former Federal Communications Commission CIO discusses how a quantitative risk profile can mitigate financial risk. Continue Reading
May 20, 2014 20 May'14
Twitter chat: How compromised data creates financial loss, insecurity

Data breaches lead to more than consumer dissatisfaction. #GRCChat-ters discuss why they also create financial loss and lack of customer confidence. Continue Reading
May 16, 2014 16 May'14
Next generation of threats requires new approach to PCI security

In this Q&A, learn how increasingly sophisticated cyberthreats should influence organizations' information protection and PCI security strategy. Continue Reading
May 15, 2014 15 May'14
Hybrid strategies common as organizations strive for cloud GRC

The lack of a common framework makes cloud security and compliance a difficult proposition. In this tip, learn best practices to ensure cloud GRC. Continue Reading
May 13, 2014 13 May'14
systemic risk

Systemic risk is a category of risk that describes threats to a system, market or economic segment. Continue Reading
May 09, 2014 09 May'14
inherent risk

Inherent risk is a category of threat that describes potential losses or pitfalls that exist before internal security controls or mitigating factors are implemented. Continue Reading
May 08, 2014 08 May'14
Information security breaches: How to minimize business ramifications

In light of recent high-profile information security breaches, companies are reexamining their risk and compliance programs. Discuss how in #GRCchat. Continue Reading

May 08, 2014 08 May'14
Use security strategy to offset regulatory compliance challenges

Mako Group CISO Brian O'Hara discusses the top regulatory compliance challenges organizations face today and how a solid security strategy can help. Continue Reading
May 07, 2014 07 May'14
Avoid the information governance traps of BYOD management

Employees strive to stay connected and improve mobile data access, but BYOD creates overlooked information governance traps. Here's how to avoid them. Continue Reading
May 01, 2014 01 May'14
Digital information age informs GRC management

In this #GRCchat recap, participants discuss how governance challenges in the digital information age influence companies' GRC management strategy. Continue Reading
May 01, 2014 01 May'14
Intelligence-driven security has benefits, but beware its limits

In this video, Vantiv CSO Kim Jones discusses why a lack of hard data makes some iterations of intelligence-driven security not so intelligent. Continue Reading

RSA 2018: Juniper CEO stresses training, automation in cybersecurity

During his RSA Conference keynote, Juniper CEO Rami Rahim encouraged leaders to be "agents of change" that embrace automation in ...

Will the next act in the ongoing evolution of IT be its last?

The evolution of IT keeps on keeping on -- for now. But as technology becomes more integral to the business, the IT department ...

Digital factory strategy needed to support omnipresent IT

Digital factories, framed as a business process re-engineering strategy for our tech-centric economy, reflect how the IT function...

SearchHealthIT

Health informaticians weave medicine, tech and science

Natalie Pageler, M.D., explains the setup of informaticist teams at Stanford Children's Health and what motivates clinicians to ...

Facebook's medical data sharing plan raises privacy concerns

Facebook's proposal to match anonymized patient data with user profiles has some experts worried about the possible privacy ...

Medical imaging informatics is the next data step forward

Weaving the science of health informatics and the data within medical images presents a tremendous opportunity for healthcare ...

SearchCloudComputing

IaaS and PaaS blurred lines increase lock-in risks

There are three distinct cloud service categories: IaaS, PaaS and SaaS. However, IaaS and PaaS are getting a little too close, ...

Single pane of glass for multi-cloud management still elusive

Unified management for multi-cloud remains a work in progress. Vendors have yet to produce the perfect single-pane-of-glass tool ...

Microsoft takes holistic approach to IoT security concerns

Azure Sphere extends security from the cloud to the device. It's the most holistic approach on the market and provides another ...

SearchDataCenter

Guide to buying server performance monitoring software

Integration, storage and vendor support all affect whether a performance monitoring tool is right for an organization. Mull over ...

How IBM's data science team quickens users' AI projects

In this Q&A, IBM's Seth Dobrin discusses the rising user interest in machine learning and AI projects and the help inexperienced ...

IBM blockchain technology spotlights mainframes

IBM's blockchain offerings aim to ease enterprise IT concerns by combining Z system mainframe hardware with industry-specific ...

SearchDataManagement

GDPR data protection edicts make good data governance a must

The European Union's new GDPR law puts the onus on companies to ensure that their data governance and management practices enable...

GDPR rules can spur broader steps to protect sensitive data

Companies need to make compliance with GDPR's requirements on managing personal data a priority, but they should also work to ...

Data integrity protection spurs greater security spending

As hacking, ransomware and malware attacks mount, companies place big data protection and integrity among the primary reasons for...

SearchSecurity

Government hacking tactics questioned at OURSA

The ACLU's Jennifer Granick took government hacking to task at the OURSA Conference this week, calling out mass surveillance ...

Keeper Security forms vulnerability disclosure program with Bugcrowd

Following its controversial lawsuit against an Ars Technica security reporter, Keeper Security has teamed with Bugcrowd on a ...

Another misconfigured Amazon S3 bucket exposes 48M records

News roundup: A misconfigured Amazon S3 bucket led to the exposure of 48 million records collected by a private data analytics ...

May 2014

CIOs trumpet top-down, proactive digital enterprise security

CSO: System logging a vital computer security tool

Corporate culture plays huge role in SEC investigation, enforcement

Twitter chat: Develop a risk profile for better breach prevention

Twitter chat: How compromised data creates financial loss, insecurity

Next generation of threats requires new approach to PCI security

Hybrid strategies common as organizations strive for cloud GRC

systemic risk

inherent risk

Information security breaches: How to minimize business ramifications

Use security strategy to offset regulatory compliance challenges

Avoid the information governance traps of BYOD management

Digital information age informs GRC management

Intelligence-driven security has benefits, but beware its limits

-ADS BY GOOGLE

SearchCIO