In Depth

IT risk management

Smartphone risk: Does your corporate smartphone policy stack up?

Many organisations that allow smartphones to access their networks are woefully under-aware of many of the risks. Continue Reading
Quocirca: Where to buy good IT security

When should buyers rely on what is provided by infrastructure suppliers and when should they turn to IT specialists? Continue Reading
Who is responsible for blocking malvertisments?

In February the London Stock Exchange (LSE) came under scrutiny when an advertisement carried on its website was blamed for distributing a virus. Continue Reading
Secure your SCADA architecture by separating networks

Many critical national infrastructure systems include supervisory control and data acquisition (SCADA) functionality. These systems can be viewed as the set of software, computers and networks that provide remote co-ordination of controls systems ... Continue Reading
CW Security Think Tank: How to ensure the success of infosecurity projects

What are the top reasons IT security projects fail, and what are the top reasons they succeed? What should information security professionals do -... Continue Reading

Is the UK in danger of squandering its IT talent?

One of the dangers of the government's Tech City project was illustrated recently with the news that TweetDeck, one of the leading companies in east London's Silicon Roundabout tech cluster, was negotiating its sale to US-based UberMedia for $30m (... Continue Reading
Do UK IT professionals have the skills to help their companies implement cloud computing securely?

Majority opinion is that skills are lacking John Colley MD EMEA, (ISC)2 An overwhelming majority of our members participating in the current edition of the (ISC)2 Global Information Security Workforce study have told us that the answer to this ... Continue Reading
Risk metrics: Measuring the effectiveness of an IT security control

In this article, based on an MSc thesis by Jonathan Pagett and Siaw-Lynn Ng, learn how to use risk metrics to gauge the effectiveness of IT security controls. Continue Reading
Raising the efficacy of a Trusted Platform Module security device

The Trusted Computing Group has set out to make interactions between computing devices more secure: But how effective is the technology it propagates? In this article, Andrew Lee-Thorp discusses the technology's potential limitations. Continue Reading
Threat assessment model: Testing open source software for security

To mitigate the risks of using open source software, Yoav Aner and Carlos Cid propose a new threat modelling method for testing the security of open source software. Continue Reading
How to improve pharmaceutical data management with the TCG TPM

This article analyses various ways in which the Trusted Computing Group's Trusted Platform Module (TPM) could be used to enhance data security for pharmaceutical companies. Continue Reading

Video: Laptops are not waterproof

ComputerWeekly was sent this video from OnTrack, which we thought we'd share. Relaxing on a beach, a gentleman had taken his laptop on his holiday to... Continue Reading
The real cost of PCI DSS compliance

It's difficult to overestimate the impact PCI DSS has had on information security, not least because of the expense of compliance. As part of SearchSecurity.co.UK's Royal Holloway University of London thesis series, Martin Bradley and Alexander ... Continue Reading
Cloud security creates new challenges

Security consultant Heinz Zerbes writes that cloud security creates different challenges, and offers advice on how to meet them. Continue Reading
How to combat Stuxnet

ISSA’s Raj Samani suggests that within control system networks where only known applications run, a simple strategy to combat Stuxnet would be to allow only authorised executables to run and deny everything else. Continue Reading

In Depth

In Depth

IT risk management

Smartphone risk: Does your corporate smartphone policy stack up?

Quocirca: Where to buy good IT security

Who is responsible for blocking malvertisments?

Secure your SCADA architecture by separating networks

CW Security Think Tank: How to ensure the success of infosecurity projects

Is the UK in danger of squandering its IT talent?

Do UK IT professionals have the skills to help their companies implement cloud computing securely?

Risk metrics: Measuring the effectiveness of an IT security control

Raising the efficacy of a Trusted Platform Module security device

Threat assessment model: Testing open source software for security

How to improve pharmaceutical data management with the TCG TPM

Video: Laptops are not waterproof

The real cost of PCI DSS compliance

Cloud security creates new challenges

How to combat Stuxnet

-ADS BY GOOGLE

SearchCIO

How edge computing differs from decentralized computing

Facebook's Libra project -- why enterprises should prepare

Ransomware attacks: How to get the upper hand

SearchSecurity

Enzoic for Active Directory brings continuous password protection

Understand the basics of email security gateways

CyberArk brings updates to privileged access security offering

SearchNetworking

An introduction to smart NICs and their benefits

What are the features and benefits of 5G technology for businesses?

Why did operator NFV adoption lag so much?

SearchDataCenter

3 ways to benefit from open source infrastructure

IBM mainframes face competitive pressures inside and out

Linux features beyond server management

SearchDataManagement

11 real-time data streaming roadblocks and how to overcome them

Snowflake product VP expounds on data warehouse for the cloud

RavenDB Cloud automates database management