Archive for February, 2012
Missed it Live? Watch the “Big Security Data” Webinar with 451 Research & eEye Here.
Recently, 451 Research and eEye hosted the webinar “Turning Your Big Security Data into a Big Advantage”. This discussion was on the topic of “Big Data” and how it relates to today’s security landscape. Featuring 451′s Andrew Hay, we covered how today’s enterprise IT and security teams can best leverage their ‘big security data’ to make…
The Secret to Server Compliance (Hint: It’s Not Sudo)
Having spent many years in the software security space, I’m often reminded of how often the word security is paired with compliance – or even interchanged, as if they’re the same thing. Security and compliance are, of course, different things. Security is about ensuring the safety of a company’s assets, protecting sensitive data, ensuring that…
Surveying the Wild Wild West of Microsoft Server Administration
I was the on the phone with a large company discussing their requirements surrounding the control of administrator access to Microsoft based servers and applications. Within 5 minutes it became clear of where the folks on the phone stood: “managing our Microsoft servers is akin to the wild wild west”. In this company there are…
Insider Threats Have Redefined Approach to Security
n an attempt to combat the issue of insider threats, the Department of Defense has tapped PARC, a Xerox company focused on innovation and R&D, to spearhead a new effort called the Graph Learning for Anomaly Detection using Psychological Context (GLAD-PC). The goal is to create technology that can automatically identify the possibility of a…
February VEF Participant Takes Home a Kindle Fire.
As you all know, every month we host our Vulnerability Expert Forum (VEF) webinar. This is a time where our experts share valuable insight regarding new vulnerabilities that are discovered and the actions that need to be taken as a result. It’s a quick way to get up to speed on current potential risks to…
3 Things To Look For At RSA 2012 In San Francisco
Yep, It’s that time of year again when everyone interested in protecting their IT assets across physical, virtual and cloud environments converge on Mascone Center in San Francisco for the annual RSA conference. Expect over 350 vendors/sponsors and 16,500 other attendees clamoring for 220+ sessions. The theme this year is “The great cipher mightier than…
Where Does Employee Trust Fit in Information Security
Next week I will be attending the RSA Conference in San Francisco. As a product management professional who enjoys investigating innovative emerging technologies, I decided to see what a few of the pre-show pundits had to say about the upcoming conference. I just finished listening to a Search Security podcast that discussed what the speakers…
Balancing Administrator Privileges for Help Desk Savings
Next week I will be attending the RSA Conference in San Francisco. As a product management professional who enjoys investigating innovative emerging technologies, I decided to see what a few of the pre-show pundits had to say about the upcoming conference. I just finished listening to a Search Security podcast that discussed what the speakers…
Top 10 Reasons To Implement Least Privilege For Apps & Databases
Taking a more tongue-in-cheek approach to highlighting the types of privilege misuse that occurs daily in applications and databases inside most organizations, I thought that a top-ten list approach might appeal to you as well. How may of these have you seen throughout your organization? #10—Sam, the CSO, can now sleep nights knowing that inappropriate…
The Proper Insider Threat Precautions Could Save You
The new California Data Breach Notification Bill (SB 24) mandating that holders of data notify consumers when their personal data has been breached went into effect at the beginning of this year. The bill has been in the works for several years and as the number of exposed personal records continues to climb (currently estimated…
