David Laceys IT Security Blog

December 2011

• Six security forecasts for 2012

  David Lacey 29 Dec 2011

My crystal ball tells me that 2012 is a relatively predictable one. That's largely because we've experienced significant changes in the political, business and security landscapes, ones that are ...

• Security Forecasts for 2011 - Right or Wrong?

  David Lacey 26 Dec 2011

As we near the close of 2011, I find it instructive to look back and see just how accurate my forecasts proved to be. At the start of the year I forecast three major shifts in thinking during 2011. ...

• No fix in sight for SCADA security

  David Lacey 16 Dec 2011

Well done for Shell for drawing public attention to the serious hazards presented by cyber attacks on physical machinery. Unfortunately it's much too late. Today's critical infrastructure is ...

• Small businesses need better security advice

  David Lacey 13 Dec 2011

I was concerned to read a recent report of a study by SecurityMetrics, a vendor of merchant data security solutions, which claims that 71% percent of the merchants who took part were found to store ...

• Following the rules of the game

  David Lacey 11 Dec 2011

Michael Colao's excellent presentation to the ISSA-UK Chapter last week on the legal implications of social networking got me thinking. Not so much about the letter of the law, but more about the ...

• Communicating information quickly and efficiently

  David Lacey 10 Dec 2011

Information security practitioners have long been poor at developing awareness materials. Partly this is because misguided governance systems focus on legalistic policies and procedures that no one ...

• Another elephant in the Cloud

  David Lacey 07 Dec 2011

Experienced professionals don't need Machiavelli to point out that introducing change is difficult, not just from a technical perspective but also from a political or legal one. Outsourcing and ...