Push Beyond Political Rhetoric in the Backdoor Encryption Debate

The old year is over, the new one has begun, and that means information security predictions galore! From my very unscientific perusal of many of those, incident response, cyber insurance, information sharing, and vendor management top the lists of high importance target areas for 2016. All of these are timely issues, I agree. But what…

Details

An Assessment of the Framework for Improving Critical Infrastructure Cybersecurity – Part 2

In this five-part series CISO Brian Lozada examines the state of cybersecurity in our nation’s critical infrastructure, what is at risk, what makes it unique and what measures can be taken to bolster its safeguards. Read Part One Read Part Three Read Part Four In the first article in this series, I addressed the growing possibility…

Details

Facts, Tips, and References for CISOs this Holiday Season

Well, ‘tis the season – a season for celebrating and a season for shopping. You are the CISO, the head honcho for everything information security. So who’re you gonna call when everyone and their mothers come running your way asking how their information can be kept safe this holiday season? Here’s your cheat sheet. A compendium…

Details

It’s All About the User

Sometime ago, I had a moment of introspection, which oddly, sounded a lot like Redd Foxx, in his best deadpan Fred Sanford delivery…. ‘It’s the user…. Dummy!’ Those of us who have been in the space for a while recognize the one common factor in every significant breach is the abuse of privileged accounts throughout…

Details

Where Do We Go From Here? The Future State of Information Security!

WHAT DOES THE FUTURE LOOK LIKE? CAN WE ACTUALLY PREDICT THE FUTURE? As a person who regularly makes predictions would tell us, the past is an important tool in determining what will happen in the future. Past experiences can be collected in the form of data to calculate probabilities of certain events happening in the future. In the world of business, correctly seeing…

Details

‘Tis the Season for Cybercriminals – Part Two

In this two-part series, CISO Anthony Scarola examines the elevated threats for both shoppers and financial institutions during the holiday season and offers best practices for ensuring your enterprise is protected during the time of increased risk. Read Part One here. Part Two Besides the required risk assessment and documentation efforts outlined in the first article in…

Details

The Holidays and the Internet – What Could Go Wrong?

According to the internetretailer.com, holiday sales are up 15%-16% this year online, but down 4.7%-10% instore.  If I were in the identity theft business, I would have a hard time containing my excitement. Last year, my Holiday article was all about various hacks and scams that always seem to increase around this time of the…

Details