Winter 2011: Password security standards and trends- Compliance Regulation and Standard Requirements
- Data Breach Incident Management and Recovery
- IT Security Frameworks and Standards
- IT Security Jobs, Careers and Certification Training
- Information Security Risk Assessment: Methodology and Analysis
- Security Policies and User Awareness
Email Alerts
-
Infosecurity 2012: ICO opposes mandatory data breach notification
Information Commissioner Christopher Graham calls mandatory breach disclosure for all companies unnecessary, saying voluntary disclosure is working.News | Thu Apr 26 09:12:12 EDT 2012
-
PCI assessor and CISO: Work together for the best PCI ROC
In a session at the SOURCE Boston conference, a PCI assessor and a CISO explain that there are ways to arrive at a report on compliance they can both appreciate.News | Thu Apr 19 15:06:41 EDT 2012
-
Privacy and electronic communications regulations: Guide to EU cookie compliance
Get advice for implementing PECR regulations requiring website owners to request users’ permission to place a tracking cookie.Guide
-
Experts differ on European ‘cookie law’ advice
U.S. firms with European customers are wondering about the new “cookie law.” Experts have different advice for European cookie law compliance.News | Thu Apr 19 00:00:00 EDT 2012
-
EU cookie regulations: Advice for firms in the US and other countries
Expert Alan Calder responds to a reader’s question: Must companies outside the EU change their websites to comply with EU cookie regulations?Answer
-
Privacy and Electronic Communications Regulations (PECR)
The Privacy and Electronic Communications Regulations (PECR) are the UK implementation of the European Union (EU) e-Privacy Directive.Definition
-
British Standards Institution (BSI)
The British Standards Institution (BSI) is a service organization that produces standards across a wide variety of industry sectors.Definition
-
Prepare now for more stringent U.S. data privacy laws
U.S. data privacy laws will soon become more pervasive and more strictly enforced. Security teams should prepare their organizations for the new rules.News | Thu Apr 05 00:00:00 EDT 2012
-
A compliance strategy for the controversial cookie opt-in regulation
Businesses face many concerns with the PECR cookie law. Compliance expert Alan Calder offers a compliance strategy for the cookie opt-in regulation.Tip
-
SIEM deployment case study shows patience is required
Williams Lea’s SIEM is already helping reduce manual log reviews. But there’s still a lot of work to be done before the SIEM can be fully deployed.News | Fri Mar 30 13:02:19 EDT 2012
- VIEW MORE ON : Compliance Regulation and Standard Requirements
-
ICO fines Welsh health board £70,000 for patient record loss
For the first time, the ICO fines an NHS organisation for sending patient data to the wrong person.News | Fri May 11 12:30:37 EDT 2012
-
Going after the middlemen in the fight against financial cybercrime
The FBI and SOCA successfully executed Operation hAVoC, going after the middlemen, or carders, in the fight against financial cybercrime.News | Thu May 10 00:00:00 EDT 2012
-
SOCA takes its website offline in DDoS response
Just days after SOCA shut down carder sites, the agency was the victim of a DDoS attack, leading SOCA to takes its website offline.News | Thu May 03 11:48:22 EDT 2012
-
SOCA shuts down network of CVV sellers' carder sites
The Serious Organised Crime Agency shut down 36 CVV sellers who were selling stolen credit card and banking credentials to buyers around the world.News | Fri Apr 27 15:55:36 EDT 2012
-
Infosecurity 2012: Survey proves value of security awareness programme
According to the latest findings from PwC, better end-user security training can pay off in fewer breaches.News | Fri Apr 27 09:40:29 EDT 2012
-
Infosecurity 2012: ICO opposes mandatory data breach notification
Information Commissioner Christopher Graham calls mandatory breach disclosure for all companies unnecessary, saying voluntary disclosure is working.News | Thu Apr 26 09:12:12 EDT 2012
-
Prepare now for more stringent U.S. data privacy laws
U.S. data privacy laws will soon become more pervasive and more strictly enforced. Security teams should prepare their organizations for the new rules.News | Thu Apr 05 00:00:00 EDT 2012
-
SIEM deployment case study shows patience is required
Williams Lea’s SIEM is already helping reduce manual log reviews. But there’s still a lot of work to be done before the SIEM can be fully deployed.News | Fri Mar 30 13:02:19 EDT 2012
-
Costs of a data breach falling, but cost per record rising
The cost of a data breach in the UK is falling, data from Ponemon Institute shows, but the news isn't all good.News | Mon Mar 26 15:44:23 EDT 2012
-
Web application vulnerability statistics show security losing ground
New Web application vulnerability statistics show the number of vulnerabilities is rising, despite the use of Web application development frameworks.News | Wed Feb 08 07:45:01 EST 2012
- VIEW MORE ON : Data Breach Incident Management and Recovery
-
CESG Good Practice Guides (GPG)
Good Practice Guides (GPG) are documents created by the CESG, which provides guidance on aspects of information assurance (IA) to help organisations manage risk effectively.Definition
-
Jericho Forum
The Jericho Forum is a global organization formed to help members deal the challenges of information security in an increasingly complex environment. (Continued)Definition
-
Kitemark
Kitemark is a registered trademark owned and awarded by the British Standards Institution for products that have demonstrated standards for quality and safety.Definition
-
Web application vulnerability statistics show security losing ground
New Web application vulnerability statistics show the number of vulnerabilities is rising, despite the use of Web application development frameworks.News | Wed Feb 08 07:45:01 EST 2012
-
FTSE 100
FTSE 100 is an index of the financial performance of the100 largest companies in the UK.Definition
-
Jericho founder: Get involved in plan for protecting identity online
Respected identity expert Paul Simmonds says the NSTIC's identity project needs European involvement, or it may not meet Europe's needs.News | Fri Jan 13 12:37:52 EST 2012
-
Getting control of IT security documentation
Does your IT department feel buried under mountains of paperwork? Expert Michael Cobb shows an easy way to organise your IT security documentation.Tip
-
Information system security certification: Detailed list of certs
There are many information system security certification choices for security pros, IT staff and managers. This list helps you sort out the certs.Tip
-
Organising an information security discussion on IT security processes
Creating a checklist can help prevent important IT security processes from falling through the cracks.Tip
-
UK banks bracing for new financial services regulations compliance
A research director for Gartner lists the top five financial services regulations that UK banks will have to deal with in the coming years.News | Mon Oct 03 11:26:58 EDT 2011
- VIEW MORE ON : IT Security Frameworks and Standards
-
Division of CISO responsibilities may prevent burnout
CISO responsibilities can be overwhelming, according to a new IBM survey. One solution may be to divide the role into two jobs.News | Thu May 17 00:00:00 EDT 2012
-
CESG
CESG is the UK government's national technical authority for information assurance (IA).Definition
-
Cyber Security Challenge UK
Cyber Security Challenge UK is a not-for-profit British company that runs IT security-related competitions with the aim of attracting talented people to the IT security industry.Definition
-
Finding Mobile device security training courses for IT admins
Expert Davey Winder suggests some good security training courses for the IT administrator who must manage their organisation’s mobile devices.Ask the Expert
-
UK IT spending 2012: Security budgets show growth, CompTIA survey says
CompTIA found IT security budgets are growing for most UK organisations. However, UK IT managers report a shortage of skilled security professionals.News | Fri Mar 23 09:20:11 EDT 2012
-
Security policy and international employment laws for hiring overseas
Before opening an office abroad and hiring employees in other countries, learn how to adapt your security policy to international employment laws.Tip
-
Despite recruiting uptick, 2011 IT security pay rates remain flat
New figures show little fluctuation in IT security pay rates heading into 2012. However, recruitment is rising, along with contract staff hires.News | Thu Jan 12 12:48:13 EST 2012
-
Information system security certification: Detailed list of certs
There are many information system security certification choices for security pros, IT staff and managers. This list helps you sort out the certs.Tip
-
Government publishes UK Cyber Security Strategy to protect public
The government’s UK cyberscurity strategy includes a new crime unit, more certifications, increased public education, and the creation of kitemarks.News | Mon Nov 28 12:57:29 EST 2011
-
(ISC)2 promotes secure SDLC with 1000th CSSLP
(ISC)2 wants its CSSLP certification, focusing on secure software development, to help augment enterprises' secure SDLC programs.News | Mon Nov 07 10:24:04 EST 2011
- VIEW MORE ON : IT Security Jobs, Careers and Certification Training
-
Prep and test your Olympics 2012 security contingency plans
To maintain information security during the 2012 Olympics, security and IT contingency plans must be tested in several key areas.Tip
-
Office of Cyber Security and Information Assurance (OCSIA)
The Office of Cyber Security and Information Assurance (OCSIA) is part of the UK Cabinet Office, which sits at the centre of government.Definition
-
With mobile payments, security teams must move quickly
As employees make payments on their mobile devices, the security team must act quickly to ensure corporate assets remain secure.Tip
-
PCI assessor and CISO: Work together for the best PCI ROC
In a session at the SOURCE Boston conference, a PCI assessor and a CISO explain that there are ways to arrive at a report on compliance they can both appreciate.News | Thu Apr 19 15:06:41 EDT 2012
-
Privacy and electronic communications regulations: Guide to EU cookie compliance
Get advice for implementing PECR regulations requiring website owners to request users’ permission to place a tracking cookie.Guide
-
EU cookie regulations: Advice for firms in the US and other countries
Expert Alan Calder responds to a reader’s question: Must companies outside the EU change their websites to comply with EU cookie regulations?Answer
-
Defining a full security threat
How would you define a security threat? The correct answer could score the funding you need for your next security project.News | Thu Apr 12 00:00:00 EDT 2012
-
A compliance strategy for the controversial cookie opt-in regulation
Businesses face many concerns with the PECR cookie law. Compliance expert Alan Calder offers a compliance strategy for the cookie opt-in regulation.Tip
-
SIEM deployment case study shows patience is required
Williams Lea’s SIEM is already helping reduce manual log reviews. But there’s still a lot of work to be done before the SIEM can be fully deployed.News | Fri Mar 30 13:02:19 EDT 2012
-
For website owners, UK cookie law causing confusion, uncertainty
A survey of digital marketing professionals found some companies plan to take no action to comply with UK cookie law before the May 26 deadline.News | Tue Mar 27 14:40:31 EDT 2012
- VIEW MORE ON : Information Security Risk Assessment: Methodology and Analysis
-
Creativity in information security awareness training
Information security awareness training programs must be creative and visually compelling to grab users’ attention and ensure they remember the security lessons.News | Thu May 03 00:00:00 EDT 2012
-
Adding cybercrime software demos to security awareness training
Security professionals can use screenshots of cybercrime software in security awareness training to convey the serious threats organisations face.Tip
-
International computer crime requires an international response
As international computer crime increases in scope and organisation, countries must work together to reduce threats from global cybercrime.Opinion
-
Infosecurity 2012: Survey proves value of security awareness programme
According to the latest findings from PwC, better end-user security training can pay off in fewer breaches.News | Fri Apr 27 09:40:29 EDT 2012
-
Infosecurity 2012: ICO opposes mandatory data breach notification
Information Commissioner Christopher Graham calls mandatory breach disclosure for all companies unnecessary, saying voluntary disclosure is working.News | Thu Apr 26 09:12:12 EDT 2012
-
ISBS 2012 report: Security slow to adapt to new technologies
PwC’s ISBS 2012 report, which will be presented at Infosecurity 2012, shows security teams react too slowly to threats from new technologies.News | Fri Apr 20 12:48:22 EDT 2012
-
Privacy and electronic communications regulations: Guide to EU cookie compliance
Get advice for implementing PECR regulations requiring website owners to request users’ permission to place a tracking cookie.Guide
-
Privacy and Electronic Communications Regulations (PECR)
The Privacy and Electronic Communications Regulations (PECR) are the UK implementation of the European Union (EU) e-Privacy Directive.Definition
-
A compliance strategy for the controversial cookie opt-in regulation
Businesses face many concerns with the PECR cookie law. Compliance expert Alan Calder offers a compliance strategy for the cookie opt-in regulation.Tip
-
For website owners, UK cookie law causing confusion, uncertainty
A survey of digital marketing professionals found some companies plan to take no action to comply with UK cookie law before the May 26 deadline.News | Tue Mar 27 14:40:31 EDT 2012
- VIEW MORE ON : Security Policies and User Awareness