The InfoSec Blog

The InfoSec Blog

System Integrity: Context Is Everything

  • About The Author
  • Master Index
  • Presentations
  • System Integrity

Month: November 2009

November 25, 2009

Why don’t companies apply more risk analysis – Part 2

And while on that subject … “Consult Human Resources when making disaster recovery plans” Every DR plan I’ve seen has failed to take into…

November 25, 2009

Why don’t companies apply more risk analysis?

http://www.smartplanet.com/business/blog/business-brains/why-dont-companies-apply-more-risk-analysis-to-layoff-decisions/3447/ So, here we are, all trained up in Risk Analysis, knowing about the risks of hiring and firing, disgruntled employees, various litigations, and…

November 25, 2009

Unfortunately, SNMPv2 is not secure

You betcha its not! There are GOOD practices for deploying SNMP. The BEST practice is to avoid V2. If you must SNMP then use…

November 18, 2009

How much would you give up your laptop for?

http://tech.yahoo.com/blogs/null/154866;_ylt=Av2YyMlmiE8ERpzUwD020zUWLpA5 Remember all those journalists doing the “give you password or a chocolate bar” articles? Well this seems a lot more realistic – giving…

November 13, 2009

The Cost of patching

I saw this assertion go by and it stood out: The bigger cost would be the cost of not patching. Such items as downtime…

November 6, 2009

Speil Chequers

Yesterday, my friend and collegue, Rob Slade, noted that … Idly leafing through yet another IT executive rag (preparatory to recycling it), and noticed…

Availability

I am currently available to offer InfoSec & GRC audit and consulting services through my company - System Integrity

Popular Pages

  • The Classical Risk Equation
  • Separation of Duties: Infosec, IT and Audit
  • “Cybercrime” is still Crime and “Cyberfraud” is still Fraud
  • Risk Analysis makes no sense … Does it?
  • Are *you* ready to give up yet?
  • Why InfoSec Positions go unfilled
  • Security
  • Risk
  • ISO27K
  • Rants and Raves

Categories

Archives

Calendar of Posts

November 2009
M T W T F S S
 1
2345678
9101112131415
16171819202122
23242526272829
30  
« Oct   Dec »

Meta

  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

Security Links

  • Schneier on Security
  • Gary Hinson
  • Martin McKeay
  • The Security Team
  • DHS Daily Report
  • SANS Security Alerts
  • Brian Krebs
  • Stupid Security
  • Kill-HUP.com
  • Bruce Schneier
Copyright The InfoSec Blog. All rights reserved. | Powered by WordPress & Writers Blogily Theme