by Stephen Northcutt A question came up on the GIAC Advisory Board: “How should an organization deal with ransomware?” One of the members, Alan Waggoner, gave a good answer. All posts to that mailing list are private, so this is reposted with his permission. 1. Get reliable, tested backups of everything that is important. 2. […]
The top titles your peers have been reading this year IT Governance Publishing (ITGP) publishes industry-leading titles on all aspects of IT governance, risk management, and compliance. ITGP 2015 bestsellers will give you the knowledge you need to transform your working life in 2016. Browse through top 10 below: 1) Web Application Security is […]
Assessing Information Security – Strategies, Tactics, Logic and Framework draws on the work of Clausewitz and Sun Tzu, and applies it to the understanding of information security that the authors have built up through their extensive experience in the field. The result is expert guidance on information security, underpinned by a profound understanding of human […]
by zdnet.com Take a plunge into the world of CyberSecurity with these recommended reads: 1) CountDown to Zero Day 2) Ghost in the Wires 3) Secrets and Lies 4) Spam Nation 5) The Art of Deception 6) Data and Goliath 7) Future Crimes 8) The Artocity Archives The Artocity Archives
by Melanie Watson Corporate information security is often hindered by a lack of adequate communication between the security team and the rest of the organization. Many consider information security an obstacle to reaching business goals, and view security professionals with suspicion if not outright hostility. As a security professional, how can you get broader buy-in […]
“Like” our page on Facebook DISC InfoSec Facebook Page Related articles Infosec News Aggregation Sources Why a dumb security video will help you work smarter, not harder My Superpower
DigitalGuardian Top 50 Infosec Blogs list. Top 50 Infosec Blogs DigitalGuardian by Verdasys offers solution in the DLP area including advanced threat protection. Seems like a worth while list. Below are the Top 10 InfoSec Blogs from the list. 1. Wired’s Threat Level 2. Roger’s Information Security Blog 3. Dark Reading 4. Krebs on Security 5. ThreatPost 6. IT Security […]
Cyber security is not enough – you need to become cyber resilient The document toolkits – created by experienced cyber security and business continuity professionals – provide you with all the document templates you’ll need to achieve compliance, whilst the supporting guidance will make sure you find the fastest route to completing your project. […]
by Lewis Morgan @ITG It has now been a week since Infosecurity Europe 2014. This year was my first at Infosec, and I found it to be one of the most interesting and diverse events I have ever been to. During my short time on the IT Governance stand, I spoke to several people who […]
With 2013 coming to a close, ITG is reflecting on what a year it’s been for the IT governance, risk management and compliance (IT-GRC) industry. In 2013 we’ve seen the highly-awaited release of ISO 27001:2013, the requirements for PCI DSS v3.0 and the Adobe breach which affected at least 38 million users. Throughout it all, IT Governance […]
July 22nd, 2013 by Lewis Morgan I overheard a conversation the other day, one which left me so stunned that I’ve decided to write about it…. Two men having dinner behind me (I got the impression they were both directors) were discussing the £200k fine the NHS received for losing patient data. Eventually, the conversation […]
Surveillance Countermeasures When we use internet browser for a web search, social media site, communication (skype), buy something from a site, we are leaving digital tracks all over the internet. Your service provider of the above services have access to this information because they are collecting this treasure trove to identify and figure out what […]
Exploding the myths surrounding ISO9000 (Adobe eBook) Thousands of companies worldwide are reaping the benefits from implementing the ISO9000 Quality Management standard. However, there are many conflicting opinions about the best approach. Some companies have delayed applying the standard, or have chosen not to implement it at all. This might be because of a lack […]
Download one of IT Governance industry leading ebooks. IT Governance source and publish titles on cyber security, compliance, project management, risk and IT service management. Fantastic Reads… All Better Priced Than Amazon Learn and stay ahead on your topic of choice. download an ebook today! ISO22301 A Pocket Guide ISO22301: A Pocket Guide is designed to help […]
Forward-thinking books on information security help organisations understand current challenges in the sector /EINPresswire.com/ Keeping up-to-date with information security issues and responding to new cybersecurity challenges can be time-consuming. However, it is essential that anyone concerned with information security, from IT professionals through to the Board members, dedicates time to learning and understanding these issues. […]
IT Governance Publishing (ITGP) are at the forefront of sourcing and publishing cutting-edge titles in the cyber security, compliance, business continuity and IT service management sectors. ITGP top 10 cutting-edge latest titles. ISO22301 A Pocket Guide This handy pocket guide explains what the ISO22301 Business Continuity Standard is and how to start planning a […]
Similar to other controls SoD (Segragation of Duties) plays an important role in reducing certain potential risk of an organization. SoD minimize certail risks, by deviding a task so it will take more than one individual to complete a task or a critical process. SoD control has been traditionally used in accounting to minimize risk […]
Tips for staying safe this Cyber Monday Cyber Monday is a marketing term for the Monday after Black Friday, the Friday following Thanksgiving in the United States, created by companies to persuade people to shop online. The term made its debut on November 28, 2005 in a Shop.org press release entitled “‘Cyber […]
IT Governance continually striving to create, source and deliver products that can help IT and Information Security professionals in the real world. Check out their latest on Business Continuity, ITIL & ITSM and Information Security products below to help you in your current and future projects. This is a perfect time of the year to start […]
The US Government has declared this October is the National Cyber Security Awareness Month (NCSAM). The aim of this campaign is to: • Promote cyber security awareness amongst citizens and businesses • Educate individuals and businesses through a series of events and initiatives • Raise cyber awareness and increase the resilience of the nation […]
