Loading ...
BlogInfoSec.com Sponsors
BlogInfoSec.com Partners
-
Recent Comments
- Navin on Why Information Security Professionals Should Learn Texas Hold ‘em Poker
- john doe on An Analysis of the Privacy Rights Clearinghouse “Chronology of Data Breaches” and Implications for Information Security Professionls (pt. 1)
- Adam Shostack on PCI DSS Position on Patching May Be Unjustified
- Jens Laundrup on PCI DSS Position on Patching May Be Unjustified
- Kris on Medical Identity Theft: Your Money or Your Life
Tags
agility algorithms application security assessment awareness Awareness / Education awareness instruction awareness training bloginfosec Annoucements Books on InfoSec breach incidents Budgeting for Security business continunity CIA triad CISO CISO savvy CISO skills COBIT Coding Securely / SDLC Conferences / Events / Meetups contingency plans counterfeit counterfeit equipment data breaches data breach notification laws data classification digital signature disaster recovery education Encryption end-point security equipment Exploit Code / Malware facebook fake FBI featured FFIEC Forensics / Incidents FUD Theater GLBA governance government Gramm-Leach-Bliley hackers hash HIPAA honeynet honeypot identity management identity theft IDM incident Industry Commentary Information security Interviews ISACA Jobs in Information Security Johnny Long KPMG leadership Legal & Regulatory Issues malicious insider malware metrics nation states network News Commentary No Tech Hacking OWASP Patching PCI Penetration Testing perimeter Phishing Policies and Procedures Privacy Privacy Rights Clearinghouse Reverse Engineering risk risk management ROI ROSI SB 1386 Security security awareness Security Breaches self-awareness Social Engineering soft skills Solutions / Workarounds SPAM spotlight successful behaviors Tools training Uncategorized Virtual Trust Viruses / Worms vulnerability assessment Vulnerability Commentary Vulnerability Disclosure Wireless Wireless Client Wireless Discussion Wireless Security Wireless Vulnerability Discussion
Tag Archives: leadership
Security IS a Business Function
July 1, 2008 – 6:00 am
–
If there is only one key attribute for the success of your information security program, it has to be that security is treated as a business function. In Chapter 5 of the recently published “CISO Leadership: Essential Principles for Success”, the authors break down the components of a…
The Evolving Information Security Landscape
April 17, 2008 – 6:00 am
–
In today’s environment of common nomenclature such as anti-virus, anti-spyware, phishing scams, and identity theft, it would be understandable that a newcomer to the information security profession would believe that the information security profession as it exists today has always been…
Survey Says… What ’soft skills’ are Security Leaders dealing with?
March 24, 2008 – 6:00 am
–
The systems security profession has emerged as a discipline to where today’s information security officer must deal with a myriad of issues beyond ensuring that the proper individuals have the access they need to systems. Today’s security officer must interface with executives outside…
Core Program Practices: Assess, Implement and Monitor
March 13, 2008 – 6:00 am
–
This column will focus on some of the most fundamental components of an effective Security Program, namely the skills and competencies required by the security leader to implement a successful program. These traits, sometimes called the ‘soft skills’ of security management, are…
