by Sarah Clarke | Feb 4, 2015 | Corporate Security, InfoSec
Jeff Bardin (A chief intelligence officer with 27 years experience in the security game. Currently working for Treadstone 71 in Washington D.C.) says we are not being fair to CISOs: “It’s not a thankful environment,” he says to Howard Solomon of IT Business Canada...
by Sarah Clarke | Feb 2, 2015 | Corporate Security, InfoSec
Is your security focus blurred? On 30th January Hacked published an article entitled: An Airgap Won’t Secure Your Computer Any More. Researchers harvested keystrokes by interpreting electromagnetic emissions. Suggested mitigation…stick your PC in a Faraday...
by Sarah Clarke | Jan 14, 2015 | Corporate Security, InfoSec, Published elsewhere
Overwhelming optimism for information security in 2015 – http://t.co/fqGALNG5ih with @ThreatTrack pic.twitter.com/y1BCvkQvJ7 — Help Net Security (@helpnetsecurity) November 19, 2014 2015 prediction: Expect massive spikes in global information security...
by Infospectives | Dec 20, 2014 | Corporate Security, InfoSec
Resist ‘Sony Psychosis’, so you don’t lose your head (and 2015 budget) when planning cybersecurity spend. I”ve been pretty quiet on the subject of the Sony hack so far. Mainly because I like to get into solutions mode and at the moment no-one...
by Sarah Clarke | Dec 17, 2014 | Corporate Security, Published elsewhere
Norman Marks recently published an insightful take on why internal audit fails at many organisations. Informed by a recent PwC survey. “about half of internal audit’s key stakeholders (board members and top executives) do not believe that internal audit is...
by Infospectives | Dec 3, 2014 | Corporate Security, InfoSec
A law firm has just suggested that PCI DSS assessors may actually be liable if they give a firm a clean bill of compliance health before a breach. The article calls out similar and complimentary points to those I made in May (that original piece is below this);...