Web Analytics

Webinar and Whitepaper Archive is available!

March 31, 2011

While I normally post on twitter or our Facebook Fan Page when we have new webinars and whitepapers available for download, we have had requests from clients to post an archive of all of our past content so I spent the last couple of days working with our marketing team to encode, upload, and categorize [...]

Read the full article →

Visualizing security breaches

March 18, 2011

Security breaches and how attackers break in to networks and systems are difficult to explain and conceptualize because of all the moving parts involved in an attack. Data visualization of these complex attacks is effective because it shifts the balance between perception and cognition to take fuller advantage of the brain’s abilities. Seeing (i.e visual perception) [...]

Read the full article →

When the Mill Slows, Sharpen Your Saw

March 9, 2011

With the reduction in IT budgets and security tools these days, many times IT security professionals are forced to deal with maintenance type tasks that leave them feeling bored and overworked. It doesn’t have to be that way. Get excited about technology again! Savid offers many opportunities to take advantage of free information for educational purposes such as webinars, lunch & learns, and whitepapers.

Read the full article →

Security Tips For Virtualization

March 7, 2011

My article on Virtualization Security just went live on InformationWeek.com, if you want to read the juicy details (incoluding charts and graphs!), go read the article right now! Security Tips for Virtualization The article is a summary of the 40+ page report I wrote for InformationWeek Analytics, the research division of InformationWeek. While researching for [...]

Read the full article →

RSA 2011 Wrap-up: Mostly Mobile and Cloud talk but progress nonetheless

February 18, 2011

I attended the RSA conference this year, as I always do, and spent most of the time talking with attendees and clients about what they were learning and trends they were seeing.  Here is a summary of what we discussed. Mobile Security Although mobile security concerns seems to be a theme, I tried to dig [...]

Read the full article →

Don’t Gut It Out – How to Prioritize Security Spending

January 23, 2011

Without a logical way to prioritize security spending, you may as well be flipping a coin. Yet I found that’s exactly how some CISOs do business. Time to get rational by using the 5 tips I give in the article.

Read the full article →

Android malware starts off 2011

December 31, 2010

Bojan Zdrnja at SANS writes about the new Android malware that Lookout, a mobile security provider, found in an Android application. As Bojan states, “The most important characteristic of this trojan is that it has botnet capabilities. This means that the trojan connects to a C&C server in order to retrieve commands and enables an [...]

Read the full article →

How to Detect Social Engineering by Phone

December 30, 2010

Social engineering conducted by phone is the most prevalent type of social engineering attack. There are good reasons for this, communicating over the phone gives the attacker much of the advantages of an in-person con at the office but without the risk of being apprehended if they are caught in their lie. Help desks are most vulnerable because their very purpose is to help callers. Help desk employees are trained to be friendly and provide information to solve a problem. Therefore, they are easier to manipulate by a skilled social engineer.

Read the full article →

Obama on Cyber Security Awareness Month

October 23, 2010

Obama proposed a joint effort by the government and private sector to ensure cybersecurity but also reminded us of individual responsibility.

Read the full article →

Vulnerability Management Can Work Across Multiple Enterprises

April 12, 2010

Security teams that manage security at single company think their job is hard (it is!) but imagine if you have 10 partners accessing your network all day everyday! Learn the 3 steps to implement multi-enterprise vulnerability management the right way.

Read the full article →

← Previous Entries

Next Entries →