Loading ...
C. Warren Axelrod writes the column Sense of Security
C. Warren Axelrod is the Chief Privacy Officer and Business Information Security Officer for a financial services company, where he interfaces with the firm’s business units to identify and assess privacy and security risks and mitigate them, to have employees become familiar with security…Read more
Kenneth F. Belva writes the column Perspectives of a Security Maverick
Kenneth F. Belva is the Publisher and Editor-in-Chief of bloginfosec.com. He currently manages an Information Technology Risk Management Program for a bank whose assets are Billions of dollars. He reports directly to the Senior Vice President and Deputy…Read more
Frank Cassano writes the column The Risk Rack
Frank Cassano is an information risk management consultant with over 20 years experience in the field. His experience includes both internal corporate experience as he has held a number of senior Information Technology management positions within organizations, as well as external experience as he…Read more
Sam Dekay writes the column Compliance Matters
At The Bank of New York Mellon Corporation, Dr. DeKay is responsible for the development of policies and standards related to information security. Prior to BNYM, he served as manager of information security for Empire Blue Cross/Blue Shield; before this he worked at ABN Bank, also as manager of…Read more
Todd Fitzgerald writes the column CISO Leadership Skills
Todd Fitzgerald, CISSP, CISA, CISM serves as a Medicare Systems Security Officer for National Government Services, LLC (NGS), Milwaukee, WI which is the nation’s largest processor of Medicare claims, and subsidiary of WellPoint, Inc. (NYSE:WLP) the nation’s largest health insurer.
Todd…Read more
Patrick Foley writes the column Draining the Swamp
After career path that wound through journalism, secondary school administration and coaching, Pat Foley, while managing several customer service groups in Harvard University’s financial administration, began an increasing involvement in solving business challenges by linking extended technology…Read more
Russell Handorf writes the column Fear Not: Hacks, Attacks and Cracks
Mr. Handorf is the Senior Security Analyst at the Philadelphia Stock Exchange. He serves on the Board of Directors for the FBI’s Philadelphia InfraGard Chapter, which has more than 800 members locally.
He has consulted for the US Federal and State Governments, companies and educational…Read more
Micki Krause writes the column CISO Leadership Skills
Micki Krause has held positions in the Information Security profession for the past 20 years. She is currently the Chief Information Security Officer at Pacific Life Insurance Company in Newport Beach, California, where she is accountable for directing the Information Protection and Security…Read more
Jeff Lowder writes the column Agile Security: Balancing Security with the Need for Agility
Jeff Lowder, is Director of Information Security and Risk Management at Disney Interactive Media Group, a branch of The Walt Disney Company.
He is an information security executive with a passion for continuous learning and innovation in information security risk management, with an…Read more
Allan Pomerantz writes the column The Weakest Link
Allan Pomerantz is the Chief Information Security Officer for the Philadelphia Stock Exchange, the Nation’s oldest.
Allan is responsible for the creation and distribution of Information Security Policies approved by executive management. In addition, he conducts employee awareness and…Read more
Derek Schatz writes the column Keys to Security
Derek Schatz, CISSP, is currently the lead security architect for network systems at Boeing Commercial Airplanes, where he designs secure networks for airplanes. He has been in information security for over 11 years in both enterprise and consulting roles, including a stint as a manager in the Big…Read more
BlogInfoSec.com Sponsors
BlogInfoSec.com Partners
-
Recent Comments
- Navin on Why Information Security Professionals Should Learn Texas Hold ‘em Poker
- john doe on An Analysis of the Privacy Rights Clearinghouse “Chronology of Data Breaches” and Implications for Information Security Professionls (pt. 1)
- Adam Shostack on PCI DSS Position on Patching May Be Unjustified
- Jens Laundrup on PCI DSS Position on Patching May Be Unjustified
- Kris on Medical Identity Theft: Your Money or Your Life
Tags
agility algorithms application security assessment awareness Awareness / Education awareness instruction awareness training bloginfosec Annoucements Books on InfoSec breach incidents Budgeting for Security business continunity CIA triad CISO CISO savvy CISO skills COBIT Coding Securely / SDLC Conferences / Events / Meetups contingency plans counterfeit counterfeit equipment data breaches data breach notification laws data classification digital signature disaster recovery education Encryption end-point security equipment Exploit Code / Malware facebook fake FBI featured FFIEC Forensics / Incidents FUD Theater GLBA governance government Gramm-Leach-Bliley hackers hash HIPAA honeynet honeypot identity management identity theft IDM incident Industry Commentary Information security Interviews ISACA Jobs in Information Security Johnny Long KPMG leadership Legal & Regulatory Issues malicious insider malware metrics nation states network News Commentary No Tech Hacking OWASP Patching PCI Penetration Testing perimeter Phishing Policies and Procedures Privacy Privacy Rights Clearinghouse Reverse Engineering risk risk management ROI ROSI SB 1386 Security security awareness Security Breaches self-awareness Social Engineering soft skills Solutions / Workarounds SPAM spotlight successful behaviors Tools training Uncategorized Virtual Trust Viruses / Worms vulnerability assessment Vulnerability Commentary Vulnerability Disclosure Wireless Wireless Client Wireless Discussion Wireless Security Wireless Vulnerability Discussion
