Opinion

Opinion

IT governance

• Why IT contracts are bound to fail

  Traditional IT contracts are ill-suited for today’s dynamic and consumer-driven business environment  Continue Reading

• Tips for master data management best practice

  Master data management (MDM) projects must be business-owned, joined up, and proven step-by-step  Continue Reading

• Students set the IT agenda through BYOD schemes

  Kevin Papworth, UK Director at education IT supplier Ellucian describes how BYOD is changing the use of IT within higher education  Continue Reading

• Getting the right processes in place to benefit from big data

  Most executives recognise that the vast amounts of data coming into their organisation can be used to make the business better, but few are taking full advantage  Continue Reading

• How to build a business continuity and recovery plan

  Practical tips on how to build a comprehensive business continuity and recovery plan for your business  Continue Reading

• Tips for better governance and compliance

  What is the relationship between regulation, governance and IT, and how can they contribute in ways that support the business?  Continue Reading

• Security Think Tank: Basic engagement principles can boost IT security’s profile

  How can information security make business sense?  Continue Reading

• Security Think Tank: Security often overlooked in M&As

  What role do IT security professionals play in mergers and acquisitions?  Continue Reading

• Get serious about people risk to reduce cyber crime

  Organisations can become blinded by compliance to the point where they have a false sense of assurance about managing people-related risk.  Continue Reading

• Forrester: Five important guidelines for business technology governance

  Forrester believes that "good" IT governance is business technology governance – a conscious process by senior executives to establish strategies, structures, processes, and measurements for the management of technology to boost business results  Continue Reading

• How to make IT contracts agile

  Agile software methodologies have been around for years, yet many in the legal profession still feel they are entering unchartered waters  Continue Reading

• Consumer capital: The new reality of 21st century data exchange

  Consumers are beginning a counter-offensive against the monopoly that industry has enjoyed over the spoils of big data  Continue Reading

• Where does the ICO's new cloud guidance take you?

  It is not possible to follow the ICO's advice on cloud computing and still have a “cloud” solution  Continue Reading

• Building trust and transparency into business culture

  As controversy over the Libor fixing rate continues, ethics and transparency are highlighted as priorities for company executives  Continue Reading

• Security Think Tank: SQLi is basically a process problem

  Why does SQL injection remain a successful way of attacking web applications?  Continue Reading

• Protecting your business from copyright infringement

  The implications of the Digital Economy Act for businesses and employees  Continue Reading

• Reducing your online risk exposure to cyber attacks

  Key steps for reducing your organisation’s exposure to risk and making it a less attractive target for hackers  Continue Reading

• Why IT leaders should adopt a venture capitalist approach

  When it comes to risky ventures, CIOs should take inspiration from their high-flying cousins in the world of venture capitalism  Continue Reading

• 440 million reasons to learn three IT risk lessons

  Companies can change their game to better prevent incidents, enable faster value creation, and avoid wasted time and money when managing risk  Continue Reading

• Forrester: How to build a security change plan

  When the risk associated with a serious breach becomes overwhelming, organisations must invest to improve the skills, processes and controls  Continue Reading

• Getting the most from public sector data

  There were plenty of nodding heads within KPMG’s IT Advisory team following a new report by Policy Exchange entitled Big Data Opportunity. The report recognises that the information underpinning public services is an essential asset in the battle...  Continue Reading

• Security Think Tank: Flame shows why risk management is a business essential

  What can enterprise learn from initial analysis of Flame malware?  Continue Reading

• Tech companies facing mounting IP challenges

  The recent flurry of patent buying and selling activity in the global tech sector illustrates dramatic changes in the way some of the biggest technology companies are approaching their intellectual property (IP)  Continue Reading

• Security Think Tank: Are companies too confident about targeted attacks?

  What can enterprise learn from initial analysis of Flame?  Continue Reading

• Security Think Tank: Flame a good reason to keep up with emerging threat analysis

  What can the enterprise learn from the initial analyses of the Flame malware?  Continue Reading

• Security Think Tank: Flame – business must prepare for the unpredictable

  What can enterprise learn from initial analysis of Flame?  Continue Reading

• Why IT contractor salaries are rising

  Overall contract rates in London have increased 3.4% year-on-year, which is indicative of where employers’ priorities lie at the moment, with many looking to bring in IT specialists capable of making key improvements on a project basis, according to...  Continue Reading

• Enterprise log managers: An unsexy but vital tool

  In today’s enterprise, you would be culling through millions of events if you were not relying on enterprise log managers to correlate that data  Continue Reading

• Security Think Tank: The only sustainable approach to security is intelligence-led

  What should organisations be doing to benefit from the move to intelligence-led security?  Continue Reading

• Security Think Tank: Intelligence-led security demands planning ALREADY USED

  What should organisations be doing to benefit from the move to intelligence-led security?  Continue Reading

• Security Think Tank: Intelligence-led security could give IT pros the edge

  What should organisations be doing to benefit from intelligence-led security?  Continue Reading

• Security Think Tank: Intelligence-led security is about risk management

  What should organisations be doing to benefit from move to intelligence-led security?  Continue Reading

• Security Think Tank: Intelligence-led security is more efficient and effective

  What should organisations be doing to benefit from move to intelligence-led security?  Continue Reading

• Security Think Tank: Security intelligence needs a plan

  What should organisations be doing to benefit from the move towards intelligence-led security?  Continue Reading

• Security Zone: Patch me please

  The technical reasons for failing to patch are fading into the past  Continue Reading

• Cookie consent: Preparing for the compliance crunch

  Data privacy specialist Phil Lee from law firm Field Fisher Waterhouse answers some commonly asked questions about the new cookie rules  Continue Reading

• Cloud choices: How to select the right hosted services

  Adopting cloud computing can save money, but it is important to choose the right cloud solution for your business needs  Continue Reading

• History lesson points way forward on data management projects

  Data management projects often suffer from historic amnesia. Projects that co-locate business and IT staff and keep to a manageable scale can achieve remarkable results, says consultant Andy Hayler.  Continue Reading

• Security Think Tank: Outsource only run-of-the-mill security functions

  What should and what should not be outsourced in IT security?  Continue Reading

• Security Think Tank: Effective management essential for IT security outsourcing

  What should and what should not be outsourced in IT security?  Continue Reading

• Security Think Tank: Start with capability gap when outsourcing security

  What should and what should not be outsourced in IT security?  Continue Reading

• Time to assess the value of the data you hold

  Martha Bennett offers strategic advice for managing growing volumes of corporate data.  Continue Reading

• Security Zone: Business continuity: putting the plan to work

  A strong business continuity model – with performance criteria and supporting management systems – is required to assure a workable roadmap to recovery  Continue Reading

• Security Think Tank: How can business achieve compliance and security? (Part 8)

  What can businesses do to make regulatory compliance a priority without losing focus on security basics?  Continue Reading

• Security Think Tank: How can business achieve compliance and security? (Part 7)

  What can businesses do to make regulatory compliance a priority without losing focus on security basics?  Continue Reading

• Security Think Tank: How businesses can achieve compliance and security (part 5)

  What can businesses do to make regulatory compliance a priority without losing focus on security basics?  Continue Reading

• Security Think Tank: How businesses can achieve compliance and security

  What can businesses do to make regulatory compliance a priority without losing focus on security basics?  Continue Reading

• Security Think Tank: How businesses can achieve compliance and security

  What can businesses do to make regulatory compliance a priority without losing focus on security basics?  Continue Reading

• Security Think Tank: How businesses can achieve compliance and security (Part 2)

  What can businesses do to make regulatory compliance a priority without losing focus on security basics?  Continue Reading

• Security Think Tank: How can business achieve compliance and security? (Part 1)

  What can businesses do to make regulatory compliance a priority without losing focus on security basics?  Continue Reading

• How to prepare for proposed EU data protection regulation

  The proposed EU data protection framework is under scrutiny and debate, but there are practical steps that companies could usefully be considering now.  Continue Reading

• Security Think Tank: How to prepare for EU data protection rules (part 7)

  The changes to the EU data protection laws are intended to simplify what has become a quagmire of differing standards derived from existing legislation  Continue Reading

• Security Think Tank: How to prepare for EU data protection rules (part 6)

  With the new EU Directives for Data Protection knocking on the door of organisations, it is time to wake up and prepare for the data privacy law changes  Continue Reading

• Collaborating on IT best practices

  It makes business sense for similar organisations to speak to each other and take a more collaborative approach when it comes to their use of IT.  Continue Reading

• Security Think Tank: How to prepare for EU data protection rules (part 5)

  There is consensus among members of The Corporate IT Forum that while proposed changes to data protection regulation might lead to greater consistency in the handling of personal data across the EU, ratification without any amendment could add ...  Continue Reading

• Security Think Tank: How should UK business prepare for EU data protection rules? (part 4)

  There are eight main areas of the proposed EU data protection framework organisations should note, according to global IT security association ISACA  Continue Reading

• UK courts show the way on piracy

  The UK courts are taking the right approach to online piracy, says John Moffat, senior attorney at Avidity IP  Continue Reading

• Security Think Tank: How to prepare for EU data protection rules (part 3)

  If your CIO has little board input or budget responsibilities, now is the time to make these changes – to empower the CIO with budget responsibility and board influence  Continue Reading

• Security Think Tank: How to prepare for EU data protection rules (part 2)

  Proposed changes to the existing EU Data Protection Directive aim to unify the existing legislation of each EU Member State, theoretically making it easier for businesses to transfer data throughout the EU and beyond  Continue Reading

• Registering improvements in IT service management

  If you stay where you are then in effect you will be going backwards - so it is for IT service provision.  Continue Reading

• Security Zone: Adopting cloud services with confidence

  Cloud-based services are highly attractive to many organisations. But what are the emerging issues you need to know about?  Continue Reading

• Security Think Tank: How should UK businesses prepare for EU data protection rules?

  The European General Data Protection Regulation represents the most significant change to data protection in the UK and EU since 1995. The ISF, working with its members, has identified the top five actions to take  Continue Reading

• Opinion: Is big data just big hype?

  If the deluge of headlines and vendor marketing materials is anything to go by, big data is the next big thing. So how much is there really to all this big data talk?  Continue Reading

• Identity management: helping to stay one step ahead of cyber criminals

  The increase in high-profile cyber attacks has shown that basic security perimeters have been breached. Identity management is part of the solution.  Continue Reading

• Mobile devices: balancing security and morale

  In today's ever-evolving world of new gadgets, devices and connected technologies, it is becoming increasingly difficult to keep a cap on the new risks that arise on a daily basis, writes Clint Merritt, CISSP, senior information security analyst for...  Continue Reading

• Security Think Tank: Challenges and opportunities of smartphone security policy (part 8)

  The use of smartphones in the workplace brings many benefits to organisations, but also risks. Increasingly, users want to experience the functionality available to them in their private lives in their professional lives, and certainly businesses ...  Continue Reading

• Security Think Tank: What are the challenges/opportunities of smartphone security policy? (part 7)

  Smartphones have become wide spread in both the consumer and business realms. More importantly, employees expect they can hold just one device for their everyday use thus the boundary between personal and business usage is diminishing. The companies...  Continue Reading

• Security Think Tank: Challenges and opportunities of smartphone security policy (part 6)

  The main rising challenge for many businesses is that of bring your own device (BYOD) and the related issues, the key issue (as always) being that of the data. And in particular, how the ownership of the data on the device is agreed, or at least ...  Continue Reading

• Reach out to children to secure tomorrow's workplace

  Organisations should be working with current knowledge of how behaviour is changing in the workplace  Continue Reading

• Security Think Tank: Challenges and opportunities of smartphone security policy (part 5)

  There are security challenges throughout the whole smartphone lifecycle, from device creation and marketing, through purchase, implementation and operation, to the eventual recycling or destruction of the device.  Continue Reading

• Security Think Tank: Challenges and opportunities of smartphone security policy (part 4)

  In many ways, smartphones can be more secure operating platforms than PCs, but there is one major policy issue that needs to be dealt with first, writes John Pescatore, vice-president and distinguished analyst at Gartner.  Continue Reading

• Forrester: Big data – start small, but scale quickly

  At extreme scale, traditional data management and business intelligence become impractical and companies do not get what they demand — more insight to drive greater business performance.  Continue Reading

• Security Think Tank: Challenges and opportunities of smartphone security policy

  Employees using their personal smartphones for work present added pressures to keep the network secure.  Continue Reading

• Security Zone: Security and collaboration – we're In this together

  2011 saw a shift in targets and attack vectors. Smaller targets with fewer defences, and more external sources earmark the reported breaches last year  Continue Reading

• M-commerce: Why CIOs need to manage the risk

  CIOs will need to manage four key risks if they want their businesses to benefit from the growth in mobile commerce.  Continue Reading

• Top 10 project management trends for 2012

  Collaboration is a common theme throughout many of the 2012 top 10 trends for project management, according to a panel of experts.  Continue Reading

• Opinion: Cloud, mobility, social among top infosec challeges for 2012, says ISACA

  What is the most important nut for infosec to crack in the coming year and why? Global IT security association ISACA gives its views.  Continue Reading

• Mobile security among top priorities for 2012

  Solving security issues relating to the use of mobile technologies will be among the most pressing priorities for businesses in 2012.  Continue Reading

• Opinion: Supply chain security should be top goal in 2012, says ISF

  The most important thing to achieve in information security in 2012 is supply chain security, writes Adrian Davis, principal research analyst at in Information Security Forum (ISF).  Continue Reading

• International collaboration key for infosecurity in 2012

  Outgoing year 2011 has been turbulent and eventful for information security, with a number of high-profile security incidents and an increase in cybercrime, and there is no indication that 2012 is going to be any different.  Continue Reading

• Time for small companies to get secure

  Computer Weekly recently hosted two executive roundtable dinner debates, in association with Dell SecureWorks, to discuss IT security challenges with IT directors from SMEs.  Continue Reading

• Bridging the information gap

  The pace at which modern business tends to move has resulted in a situation where centralised decision-making struggles to keep up.  Continue Reading

• Is time running out for internet domains?

  The world’s political leaders are taking an unusually intent interest in the technical system of Internet domains’ naming and numbering (the DNS).  Continue Reading

• Refining the language of risk

  When it comes to risk analysis, one of the most important tools an IT executive can deploy is compelling language.  Continue Reading

• Ten trends you cannot ignore

  Vice-president of Nucleus Research, Rebecca Wetteman, counts down 10 issues which should be top of the IT agenda.  Continue Reading

• Beyond PCI DSS: Protecting more than just card data

  The latest version of the PCI Data Security Standard, formally released last month (Version 2.0, 28 October 2010), gives merchants, service providers, auditors and banks an opportunity to briefly review how far (or not) the card payment industry has...  Continue Reading

• Security zone: Cultivating the secure mindset for systems development

  In speaking at the inaugural IT Decisions conference held in Birmingham last month, I asked delegates to consider how we can tackle the issue of software security with better decision making and what would be required to make this possible, writes ...  Continue Reading

• Where are the opportunities in information security?

  Where are the opportunities in information security? By John Colley, managing director EMEA, (ISC)2 Is information security mostly an IT concern...  Continue Reading

• Opinion: Google Adwords gets legal boost from Europe

  The advertising, e-commerce, legal, retail and even counterfeiting industries looked on in anticipation this week, as the European Court of Justice's Advocate General delivered his opinion in the long running dispute between Google and Louis Vuitton...  Continue Reading

• Using the balanced scorecard to bring IT governance to light

  IT governance has a major impact on business strategy, particularly where great strategic reliance is placed on the IT function developing and delivering complex systems to support corporate direction, policy and external regulations  Continue Reading

• How to prevent internal data breaches

  How internal data breaches happen How internal data breaches can be prevented Since...  Continue Reading

• Identity theft: What have we learned?

  Short memories or complacency? ask Ray Binnion, non-Executive Chairman, Defend-IT Limited and James Colby, Vice President Marketing, Insightix.  Continue Reading

• Take a structured IT approach for successful mergers and acquisitions

  Computer Weekly reported recently that merger and acquisition activity is likely to continue despite - or perhaps because of - the credit crunch, writes Marc Bray, operations director at Totalamber.  Continue Reading

• tom rogerson

  The march towards the consumerisation of the IT used by large organisations is appearing irresistible, writes Tom Rogerson, chief technology officer, financial services Europe, Computer Sciences Corporation.  Continue Reading

• Infosecurity Europe 2008: Security governance and the wealth of nations

  What possible link could there be between the writings of an 18th century economist and the management of information security in the 21st century?  Continue Reading

• Which comes first: compliance, security or operability?

  The task of managing risk has changed dramatically, writes Raj Samani of ISSA UK...  Continue Reading

• Sharpen up your data protection act

  The collection and use of personal information is essential to the functioning of businesses, but IT departments...  Continue Reading

• Wanted! Meeting of minds at the top

  Governance: Getting the best returns on IT investment is an important part of IT governance. But to achieve this, the gap between IT and the business needs to close.  Continue Reading

• Talk is the key to effective IT

  The word “governance” is enough to make any old-time techie reach for a gun – either to shoot himself in a fit of depression or to get even with those whose sole mission seems to be to take the last scraps of fun out of computing.  Continue Reading

• Why IT governance is the great enabler

  Most organisations would deem anyone making the statement in the title of this article totally mad.  Continue Reading