Get up-to-the-minute news and opinions, plus access to a wide assortment of IT security resources that will keep you current and informed.

Keep me logged in Forgot your password?

Please wait...

Please wait...

CSO's desk Articles

Signing on the dotted line of HIPAA

Bryan Cline, CISO and director of information security at Catholic Health East July 01, 2011

Given that a misrepresentation of the facts during attestation could result in civil and criminal penalties, what does a health care executive need to feel comfortable about before signing on the dotted line?
 

A new era for risk management

Justin Somaini, CISO, Yahoo! June 01, 2011

The ability to ascertain the risk tolerance of the business gives us a benchmark to hit as opposed to just "guessing" and then getting political pushback
 

Mobile device control: Get to yes

Vicky Ames, former information system security officer at a federal medical research agency May 02, 2011

If you aren't already trying to figure out your mobile device security strategy, you soon will be, says Vicky Ames, former information system security officer at a federal medical research agency.
 

No silver bullet for PCI compliance

Eduardo Perez, chairman, PCI Security Standards Council April 01, 2011

All around the world, organizations are moving toward the adoption of updated PCI standards so that they can begin 2012 with assessments against the newest iterations.
 

Post-WikiLeaks: Back to basics

Maurice Hampton, information security and privacy services leader, Clark Schaefer Consulting March 01, 2011

Dust off your company's risk assessment process and make sure it is up to date because this is where your approach to defending against a WikiLeaks type of threat is going to start.
 

Think like a chess player

Ward Spangenberg, director, security operations, Zynga February 01, 2011

The security chief of Zynga offers tips for deterring today's sophisticated attacks. They include understanding attack vectors, quantifying risk, controlling damage and being a trusted leader.
 

The dotted lines of health care

Bryan Cline, CISO and director of information security at Catholic Health East January 03, 2011

Health care chief information security officers (CISOs) have to ask themselves, "What exactly are the security and privacy requirements around EHR?"
 

A change to protect card data

Bruce Rutherford. chairman, PCI Security Standards Council December 01, 2010

From my perspective, 2010 has been a critical year for global payment card security efforts that may ultimately result in a significant reduction in future payment card fraud levels, says Bruce Rutherford, chairman, PCI Security Standards Council.
 

Reducing compliance workloads

Jerry Archer, SVP & CSO, Sallie Mae November 01, 2010

Security is not compliance, and compliance is not security.
 

Don't forget the business process

Stacey Halota, VP, information security and privacy, The Washington Post Co. October 01, 2010

To get a complete picture of where critical information resides, it is very important to inventory at the business process level, says the Washington Post Co.'s Stacey Halota.
 
« Previous
Next »
Popular Topics
4G-war Account Information Advanced Persistent Threat Adware Anonymous Apple Threats Botnets Data Breach Data Breaches Data Leakage Encryption Government Hackers Hacktivism Health Care IT Security Java Malware Mobile Devices Risk Management Social Security Numbers Stolen Information Survey Trojans Vulnerabilities & Flaws