- Risk Management Which Information Security Controls Are Most Important?
Comparing Securosis, PwC, and SANS 20 Critical Controls projects, system hardening appears across all three lists. Other consistently important controls include centralized security event monitoring,...
- Leadership CISOs Can Find Allies at the General Counsel Office
CISOs who build strong working relationships with General Counsel gain a powerful ally for navigating compliance obligations, protecting intellectual property, and managing risk. The regulatory...
- Social Networking Quora Essentials for Information Security Professionals
- Web Security Cross-Side Scripting Demystified
- Risk Management Cybersecurity Isn't a Standalone Discipline
You can do excellent security work and still go unnoticed if your team operates in isolation from the rest of the organization. Understand how your responsibilities connect to Finance, Legal, HR, IT,...
- Communication 10 Communication Tips for Security and IT Professionals
Explaining security and IT work is often harder than the work itself. Ten habits will sharpen how you explain it to specialists, executives, and everyone in between.