Enterprise (In)Security
a blog about how to better improve Enterprise Security via Best practice in Policy / Compliance / Control
Sunday, January 12, 2014
Saturday, March 2, 2013
RSA Conference Recording from the past
This should also be the location for the 2013 in 2 weeks time! enjoy:
http://365.rsaconference.com/community/archive/usa
http://365.rsaconference.com/community/archive/usa
Monday, July 9, 2012
making your phone FIPS-2 (Level 3) ready - encrypted phone / sms with cert in hardware
http://www.go-trust.com/demo/
this could pretty much gurantee that platform with SD slot is the future.. which is not Iphone, and surely Android.
this could pretty much gurantee that platform with SD slot is the future.. which is not Iphone, and surely Android.
Friday, June 8, 2012
Data Breach tracker
don't get listed:
http://www.privacyrights.org/data-breach
Thursday, May 17, 2012
Wednesday, May 9, 2012
upcoming EU Data Protection update
here is a head start as the draft is ready already:
- merging of COPPA law from US.
- inclusive of non-EU company who may not have a entity in Europe to require a Data Protection Officer.
- opt-in instead of opt-out for all processing of data. (this could change UI).
- require of notification of beach in 24 hours
- impose penalties of up to 2 % of a company’s worldwide turnover in case of severe data protection breaches.
Thursday, May 3, 2012
CISO and IT are starting to merge into one org.
http://www.securityweek.com/ibm-study-ciso-role-evolving-more-intense-ever
This is a natural progression as security becomes more involved in day to day operations as well as production. I think we will see numerous title changes and org restructuring. Director of IT Security, Security Admins vs. IT admins etc.
This is a natural progression as security becomes more involved in day to day operations as well as production. I think we will see numerous title changes and org restructuring. Director of IT Security, Security Admins vs. IT admins etc.
Subscribe to:
Posts (Atom)