Sergej Khackimullin - Fotolia

Risk Management with Stuart King and Duncan Hart

Dealing with the operational challenges of information security and risk management.

September 2007

  • Importance of logs

    Stuart King - Reed Elsevier 29 Sep 2007
  • There's an old episode of Blackadder Goes Forth where Baldrick proudly presents a bullet into which he's carved his own name. His reasoning being that if he is in possession of the bullet that has ...

  • LinkedIn Article

    Stuart King - Reed Elsevier 27 Sep 2007
  • An excellent article on the perils of social networking with LinkedIn in the latest edition of [in]secure magazine.

  • Infosec Podcasts

    Stuart King - Reed Elsevier 27 Sep 2007
  • If you're familiar with the Infosec Europe show, held annually at Olympia, then you'll know that it always attracts an impressive line-up of expert speakers over the course of the three days. It's ...

  • PCI Compliant? Let's focus on security instead...

    Stuart King - Reed Elsevier 26 Sep 2007
  • I was pondering on whether or not to go to the PCI DSS conference. I've decided not to go because, frankly, I think the whole thing is now becoming a big waste of air. So many people are now making ...

  • Insider Threat

    Stuart King - Reed Elsevier 25 Sep 2007
  • Somebody showed me a magazine article a few days ago about the "threat within" and ask me if I was concerned and considered it a risk for my own organisation. It would be a foolish security manager ...

  • Sacked for using eBay - what a waste of time...

    Stuart King - Reed Elsevier 24 Sep 2007
  • Neath Port Talbot Council last week sacked a worker for using eBay during office hours. What an absolute waste of time and effort that whole process must have been. How many years have people spent ...

  • - Is that the way we all go?

    Stuart King - Reed Elsevier 22 Sep 2007
  • ushers in a new era of on-demand success with the industry's first platform as a service (PaaS). With the platform, you can build any application, any database, any logic, ...

  • Data Protection Act - What's the Damage?

    Stuart King - Reed Elsevier 20 Sep 2007
  • One of the interesting points somebody made earlier on this week was about the difficulty individuals face in this country, if they feel so inclined, to claim damages against an organisation under ...

  • Gartner IT Security Summit - Day 2

    Stuart King - Reed Elsevier 19 Sep 2007
  • The down-side of spending a couple of days sitting through presentations from people offering enlightenment as to how you can be more effective in your job, is that you end up feeling like you've ...

  • Gartner IT Security Summit - day 1

    Stuart King - Reed Elsevier 18 Sep 2007
  • I'm back from a good first day at the Gartner IT Security Summit being held in London. Two of the sessions I attended were particularly good. Firstly, there was Richard Hunter of Gartner who ...

  • Skype again

    Stuart King - Reed Elsevier 17 Sep 2007
  • There's a new book out entitled "Securing IM and P2P Applications for the Enterprise " (ISBN: 978-1-59749-017-7 ) where it's written: "Although Skype is well known for its voice communication, it ...

  • Stating the value of having a risk model

    Stuart King - Reed Elsevier 15 Sep 2007
  • Why should we go to the trouble, time, and effort of producing an information security risk model? What value does it bring to the organisation and who is going to use it? These are questions I've ...

  • Hacker proof encryption

    Stuart King - Reed Elsevier 13 Sep 2007
  • I shared this story about the "world's first hacker proof encryption technology" with a colleague. Quick as a flash he emailed me back: "I wonder if it is criminal and idiot proof also ;)" Touché!

  • CISSP - is it worth it?

    Stuart King - Reed Elsevier 13 Sep 2007
  • There is still plenty of debate on the airwaves about the value of the CISSP certification. Martin McKeay on his Network Security blog states "it's not meant to measure someone's networking ...

  • Security Metrics

    Stuart King - Reed Elsevier 12 Sep 2007
  • I'm in the process of putting together some useful security metrics to report up to the senior management of my organisation. This is one area of the industry that, in my opinion, is sorely lacking ...