In Depth

In Depth

IT risk management

• Basic security can help tackle Stuxnet

  One important lesson IT managers can learn from Stuxnet is that it is a huge mistake to buy software with known hardcoded passwords, says John Pescatore, research vice-president at Gartner.  Continue Reading

• Top tips to guard against Stuxnet

  There is much that security professionals can learn from Stuxnet, says Adrian Davis, principal research analyst at ISF for the Stuxnet Think Tank. The malware should have sounded a call to action on several fronts.  Continue Reading

• Security zone: opinions and insights from experienced professionals

  Information security has become a mainstream concern with well-established governance and compliance, increasing public awareness and more business processes going online. Security is an integral part of every business process. It must be built into...  Continue Reading

• Security Think Tank: What are the risks associated with social-media use, and who owns these risks?

  Is social media a security problem? What are the security risks associated with social-media use, and who owns these risks?  Continue Reading

• How IT departments can manage DIY technology

  Staff in companies are using low-cost accessible technology to connect their customers and innovate. One in three company employees are doing this already, under the radar.  Continue Reading

• Sneaking a smart phone into the enterprise

  Are smart phones connected to the corporate network a good idea?  Continue Reading

• Buyers guide to the connected enterprise: the next decade

  The past decade began with the steady adoption for IP telephony and voice and data convergence. Unified communications appeared a few years later and delivered a framework that supports integrated communications and collaboration applications. This ...  Continue Reading

• CIO interview: BAA checks in IT transformation

  When IT veteran Philip Langsdale joined BAA as chief information officer with a brief of creating a technology strategy to support a £4.8bn capital investment plan, he knew he was not in for a smooth ride.  Continue Reading

• Can information security deliver business value?

  Information security remains a perennial priority for IT leaders.  Continue Reading

• Think Tank: Are firms succeeding in converging operational risk management?

  To what extent are UK organisations succeeding in bringing together enterprise risk management, security, business continuity and regulatory compliance to set better priorities?  Continue Reading

• Wrench in the System: How to reorganise IT projects

  When significant numbers of workers have trouble using a business system, and familiarity breeds only frustration, resentment, and hostility, the common assumption is that more training is needed…  Continue Reading

• Will auditors allow your data to reside in the cloud?

  Do you fear the auditor more or the attacker? A lot of companies fear the auditor more. If you hold data internally, you can show the auditor your controls, but the cloud makes such demonstrations more difficult.  Continue Reading

• Buyers guide: The intrusion prevention market

  Gartner analysts Greg Young and John Pescatore examine where intrusion prevention systems are heading  Continue Reading

• Buyers guide to network security

  For years network security has been seen as central to preventing the undesirable outside world gaining access to corporate networks.  Continue Reading

• Video: Lords slam 'shocking lack of co-operation' on cyber defences

  There is a "shocking lack of co-operation" between the European Union and Nato in defending member states against cyber attacks, a House of Lords committee has found.  Continue Reading