DISC InfoSec blog

There are plenty of good books out there, feel free to share your favorite InfoSec books in the comment section Cracking the Coding Interview Blue Team Field Manual (BTFM) (RTFM) The Art of Exploitation, 2nd Edition The Art of Invisibility Identity Theft by Ron Cantor Smalltalk Best Practice Patterns Cryptography Engineering: Design Principles and Practical Applications […]

  By Tracy Shumaker In order for CISOs to stay relevant in their field today, they must add communication and soft skills to their list of capabilities. Traditionally, their role has been to take charge of IT security. Now CISOs oversee cybersecurity and risk management systems. They must manage teams and get leadership approval in order […]

If you’re just starting a new job in information security, you’ve just finished your university degree, or you’re looking for the next step in your career but not sure which direction to take, try this… Information Security Expertise Bundle Designed to help you develop your knowledge and understanding of key information security topics, this collection […]

Opening theme video from RSA Conference 2016 – #RSA2016 Observations from the 2016 RSA Conference Related articles Tripwire at RSA Conference 2016: Cyberwar @ the Endpoint PhoneBoy Speaks Ep 1063: Heading to RSA Conference 2016 Digital Equilibrium Project Looks to Balance Privacy, Security 2016: RSA Conference and The DomainTools Report RSA 2016: discover the security […]

Excellence in the Field of Mathematics The Cryptographers’ Panel Crypto 101: Encryption, Codebreaking, SSL and Bitcoin Beyond Encryption: Why We Can’t Come Together on Security and Privacy Peek into the Future: Symantec Ascending the Path to Better Security: Cisco Louder Than Words: Intel Security Trust in the Cloud in Tumultuous Times: Microsoft The (Inevitable?) Decline […]

by Stephen Northcutt A question came up on the GIAC Advisory Board: “How should an organization deal with ransomware?” One of the members, Alan Waggoner, gave a good answer. All posts to that mailing list are private, so this is reposted with his permission. 1. Get reliable, tested backups of everything that is important. 2. […]

The top titles your peers have been reading this year IT Governance Publishing (ITGP) publishes industry-leading titles on all aspects of IT governance, risk management, and compliance. ITGP 2015 bestsellers will give you the knowledge you need to transform your working life in 2016. Browse through top 10 below:   1) Web Application Security is […]

Assessing Information Security – Strategies, Tactics, Logic and Framework draws on the work of Clausewitz and Sun Tzu, and applies it to the understanding of information security that the authors have built up through their extensive experience in the field. The result is expert guidance on information security, underpinned by a profound understanding of human […]

by zdnet.com Take a plunge into the world of CyberSecurity with these recommended reads: 1) CountDown to Zero Day 2) Ghost in the Wires 3) Secrets and Lies 4) Spam Nation 5) The Art of Deception 6) Data and Goliath 7) Future Crimes 8) The Artocity Archives The Artocity Archives

by Melanie Watson Corporate information security is often hindered by a lack of adequate communication between the security team and the rest of the organization. Many consider information security an obstacle to reaching business goals, and view security professionals with suspicion if not outright hostility. As a security professional, how can you get broader buy-in […]

“Like” our page on Facebook DISC InfoSec Facebook Page Related articles Infosec News Aggregation Sources Why a dumb security video will help you work smarter, not harder My Superpower

DigitalGuardian Top 50 Infosec Blogs list. Top 50 Infosec Blogs   DigitalGuardian by Verdasys offers solution in the DLP area including advanced threat protection. Seems like a worth while list. Below are the Top 10 InfoSec Blogs from the list. 1. Wired’s Threat Level 2. Roger’s Information Security Blog 3. Dark Reading 4. Krebs on Security 5. ThreatPost 6. IT Security […]

Cyber security is not enough – you need to become cyber resilient   The document toolkits – created by experienced cyber security and business continuity professionals – provide you with all the document templates you’ll need to achieve compliance, whilst the supporting guidance will make sure you find the fastest route to completing your project. […]

by Lewis Morgan @ITG It has now been a week since Infosecurity Europe 2014. This year was my first at Infosec, and I found it to be one of the most interesting and diverse events I have ever been to. During my short time on the IT Governance stand, I spoke to several people who […]

With 2013 coming to a close, ITG is reflecting on what a year it’s been for the IT governance, risk management and compliance (IT-GRC) industry. In 2013  we’ve seen the highly-awaited release of ISO 27001:2013, the requirements for PCI DSS v3.0 and the Adobe breach which affected at least 38 million users. Throughout it all, IT Governance […]

July 22nd, 2013 by Lewis Morgan  I overheard a conversation the other day, one which left me so stunned that I’ve decided to write about it…. Two men having dinner behind me (I got the impression they were both directors) were discussing the £200k fine the NHS received for losing patient data. Eventually, the conversation […]

Surveillance Countermeasures When we use internet browser for a web search, social media site, communication (skype), buy something from a site, we are leaving digital tracks all over the internet. Your service provider of the above services have access to this information because they are collecting  this treasure trove to identify and figure out what […]

Exploding the myths surrounding ISO9000 (Adobe eBook) Thousands of companies worldwide are reaping the benefits from implementing the ISO9000 Quality Management standard. However, there are many conflicting opinions about the best approach. Some companies have delayed applying the standard, or have chosen not to implement it at all. This might be because of a lack […]

Download one of IT Governance industry leading ebooks. IT Governance source and publish titles on cyber security, compliance, project management, risk and  IT service management. Fantastic Reads… All Better Priced Than Amazon Learn and stay ahead on your topic of choice. download an ebook today! ISO22301 A Pocket Guide ISO22301: A Pocket Guide is designed to help […]

Forward-thinking books on information security help organisations understand current challenges in the sector /EINPresswire.com/ Keeping up-to-date with information security issues and responding to new cybersecurity challenges can be time-consuming. However, it is essential that anyone concerned with information security, from IT professionals through to the Board members, dedicates time to learning and understanding these issues. […]