Risk Management with Stuart King and Duncan Hart

Recent Posts

  • Merry Christmas!

    Stuart King - Reed Elsevier 24 Dec 2008
  • It's Christmas! Many thanks to everyone who has supported this blog over the past year, provided feedback - good or bad - and especially those of you who keep coming back.Merry Christmas and all ...

  • AMEX and online security

    Stuart King - Reed Elsevier 23 Dec 2008
  • The cross-site scripting (XSS) flaw discovered on the website of American Express (see full story http://www.darkreading.com/security/vulnerabilities/showArticle.jhtml?articleID=212501694) is ...

  • Security professional from hell...

    Stuart King - Reed Elsevier 19 Dec 2008
  • What are the traits or characteristics of a security professional from hell?See video at ...

  • Insider threat - results of a new survey

    Stuart King - Reed Elsevier 16 Dec 2008
  • The results of a recent survey performed by Cyber-Ark Software caught my attention. You can find it referenced in SC Magazine,on Dark Reading and various other places.The survey questioned city ...

  • Information Security Budgets - Pragmatism and Credibility

    Stuart King - Reed Elsevier 15 Dec 2008
  • There's a lot of advice out there on how best to deal with security budgets in the current recession hit times. Most of it is pretty uninspiring. A blog from Jeff Bardin links off to a plethora of ...

  • Phishing and Spam IQ Quiz

    Stuart King - Reed Elsevier 11 Dec 2008
  • SonicWall have posted an excellent Phishing and Spam recognition test. Pass it around.http://www.sonicwall.com/phishing/index.html

  • Security predictions for 2009

    Stuart King - Reed Elsevier 09 Dec 2008
  • I've hooked myself up to a device that administers a short, sharp, painful electric shock any time I get the urge to blog security predictions for 2009. There are plenty of others jotting down ...

  • Americans and travel

    Stuart King - Reed Elsevier 04 Dec 2008
  • If Americans want to know why they are sometimes less than popular outside of their homeland then they need look no further than the arrogant, super-sized businessman sitting at the table next to ...

  • New and old frauds

    Stuart King - Reed Elsevier 03 Dec 2008
  • Interesting story about a fraud targeting American home owners, linked from Securosis.com.There are a number of aspects of this story that make it very newsworthy. Firstly, the ease with which ...

  • Delhi, security awareness, and pragmatic reporting

    Stuart King - Reed Elsevier 02 Dec 2008
  • Clearing customs and getting out of the airport at Delhi last night was actually quicker than most of my recent experiences at Heathrow. In fairness I was travelling light and it was 2:30am before ...

  • Building an Information Security Strategy - reprise

    Stuart King - Reed Elsevier 01 Dec 2008
  • Over the past year, the posting on this blog with the single most number of page views is "Building an Information Security Strategy" which was actually posted back in March 2007.When it recently ...

  • India, outsourcing, and hospitality

    Stuart King - Reed Elsevier 28 Nov 2008
  • The events in Mumbai are shocking and tragic. The scale of the attack and the apparent singling out of westerners is a wakeup call. Indian outsourcers such as Wipro and Infosys are, according to ...

  • EURIM on Information Governance

    Stuart King - Reed Elsevier 25 Nov 2008
  • I had the privilege yesterday to attend the EURIM Directors Roundtable on Information Governance. The purpose of the event was to identify "whether there is the will on the part of large ...

  • James Bond and Chinese Hackers

    Stuart King - Reed Elsevier 24 Nov 2008
  • The story in the press alleging that Chinese computer hackers are attempting to gain access to state secrets (see "US Warned of China Cyber Spying") is not new by any means. Newspapers were ...

  • Infosec risk assessments - uncertainty and opinion

    Stuart King - Reed Elsevier 22 Nov 2008
  • One of the problems with information security and risk assessments is that we're really dealing with uncertainty rather than risk. There is a difference. You can estimate risk when you know the ...