In The News | IANS - Information Security, Regulatory Compliance & Risk Management

Moore's Law leaves mobile networks ripe for attack

Iain Thomson, Journalist | The Register

02/29/2012

From his presentation at RSA 2012, IANS Faculty member Aaron Turner's comments on the vulnerability of the GSM mobile standard are captured in The Register.

RSAC2012 Podcast: SECT-302: The Virtualization Security Landscape: What's Changed?

Dave Shackleford, CTO, IANS, SANS Certified Instructor | RSA Conference

01/13/2012

The security community started paying attention to virtualization technology around 2006. Many new threats were discussed (some real, somehypothetical), attack vectors were described, and vendors started offering “virtualization security” products soon after. Where do we stand today? This session will take a look at the landscape of virtualization security, what’s changed, and what’s yet to come.

Managing information security during an innovation void

Peter Kuper | CSO

01/12/2012

An innovation void is deepening security's struggle to protect, according to In-Q-Tel's Peter Kuper. But can the gap be closed by infosec professionals willing to seize the initiative?

The Network Evolution University: Next Generation Networks

SearchNetworking.com

11/09/2011

IANS Faculty member Aaron Turner was featured in a Networking Research Library (part of TechTarget University) segment on "Securing the Next Generation Network." His three video segments offer compelling insights about current network security. Please take some time and view each of the videos to hear Aaron's ideas. (Free-registration required.)

A new model for global data security

by Phil Gardner | GFS News

09/08/2011

The first half of this year witnessed an unprecedented number of data breaches. Some of the most well-known and respected multinational companies including Sony, Morgan Stanley, Citigroup and RSA, were among those attacked and breached. We also saw incidents resulting in the loss of personal data from government agencies in Texas and Massachusetts in the United States. Given this dangerous environment, what can be done to protect an organisation's most vital data? Can we defend ourselves from this new, smarter, and more aggressive attacker? Fortunately the answer is yes, however it will require a new approach to data security.

Organizations need a new data security model to combat today’s threats

Phil Gardner and Chris Silva | SearchSecurity.com

08/31/2011

Information security, or a lack thereof, grabbed more than its usual share of headlines during the first half of 2011. The period was notable not just for the prevalence of network break-ins, but for the roster of marquee names that were victimized by a growing number of skilled and sophisticated attackers. Not only did the breaches appear to be more common, they were also at organizations regarded as information security role models. To make matters worse, the news media often reported the incidents before the individuals affected were fully informed. With a lot of time still left on the calendar, 2011 seems likely to be remembered as the year of the data breach.

Mobile device security: 5 questions to ask when creating policy (includes video)

Joan Goodchild | CSO

08/03/2011

While 69 percent of organizations have employees using personal devices to connect to their corporate network, more than one-fifth, or 21 percent, currently have no policy in place to govern the use of personal mobile devices on their network. These new figures, released recently from security-products firm Courion, suggest many security leaders are still ignoring the need to address mobile-device management among their employees. But according to Chris Silva, Senior Vice President, Research and Service Delivery at security firm IANS, having a mobile device policy in place is the most important step to handling the risk inherent to personal mobile-device use.

CSOs Have Grown from Guardians To Business Enablers

By Jennifer LeClaire | Sci-Tech Today

12/22/2010

The role of chief security officer has evolved from protecting data to making sure business advances securely. With employees blurring the line between work and personal lives and data moving to the cloud, CSOs are in the Security 2.0 stage, with Security 3.0 coming up. Rather than block access, CSOs now must ensure secure access.

Five cloud security trends experts see for 2011

By Bob Violino | CSO Online

12/01/2010

What do IT security practitioners expect to be major cloud security issues in 2011? Here are five things to watch for.

With McAfee Deal, Intel to Bake in Security

By Elinor Mills | CNET News

08/19/2010

In the future, you may not have to buy antivirus software for your laptops and mobile devices if Intel is able to live up to the promise of integrating technology from acquisition target McAfee.