Opinion

Opinion

IT security

• Security Think Tank: Secure and seamless collaboration key for business

  What is the best approach to increasing collaboration without reducing security in an enterprise?  Continue Reading

• Security Think Tank: Enable collaboration by putting data at the heart of security

  What is the best approach to increasing collaboration without reducing security in an enterprise?  Continue Reading

• CSI IT: Forensic security skills for IT professionals

  TV shows such as CSI have popularised digital forensics, piquing the interest of a generation of graduates and career-movers  Continue Reading

• Why NSA spying is breaking UK law

  A former White House lawyer confirms Fisa corporations were under secret court orders to spy on their customers outside the US  Continue Reading

• Employee monitoring: How to avoid the legal pitfalls

  What is, and what is not acceptable in terms of employee monitoring?  Continue Reading

• Inside jobs – the security risks from the rise in temporary staff

  The growth in temporary workers is leaving companies vulnerable to a new kind of identity fraud - executive impersonation  Continue Reading

• Sketch: Don't panic, it's the hitchhiker's guide to the BCS AGM

  Kevin Cahill gives his (mostly harmless) take on the struggles facing the Chartered Institute for IT  Continue Reading

• Security Think Tank: Business context still missing from context-aware security

  Despite the hype around context-based security, has this technology evolved to the point where it is useful to the enterprise and is having a measurable effect?  Continue Reading

• Security Think Tank: New sandbox tech will help enable context-aware access

  Has context-based security evolved to the point where it is useful to the enterprise and is having a measurable effect?  Continue Reading

• Security Think Tank: Cloud, mobile deepen need for context-aware security

  Despite the hype around context-based security, has it evolved to the point where it is useful to the enterprise and having a measurable effect?  Continue Reading

• Security Think Tank: Enterprise adoption of context-based security slow

  Ignoring the hype around context-based security, has it evolved to the point where it is useful to the enterprise and exerting a measurable effect?  Continue Reading

• Security Think Tank: CISOs should be first stop on the way to cloud

  Hybrid cloud environments provide the most flexibility, but how can businesses decide when public or private cloud is more appropriate?  Continue Reading

• Security Think Tank: UK firms still not entirely comfortable with cloud

  Hybrid cloud environments provide the most flexibility, but how can businesses decide when public or private cloud is more appropriate?  Continue Reading

• Security Think Tank: Choose public or private cloud with a clear head

  Hybrid cloud environments provide the most flexibility, but how can businesses decide when public or private cloud is more appropriate?  Continue Reading

• Should you allow a bring your own device policy?

  Employers are realising there are challenges presented by BYOD which, if not dealt with, could have a serious impact on the business  Continue Reading

• Security Think Tank: Balancing cloud risk and reward

  Hybrid cloud environments provide the most flexibility, but how can businesses decide when public or private cloud is more appropriate?  Continue Reading

• Security Think Tank: Striking the hybrid cloud balance

  Hybrid cloud environments provide the most flexibility, but how can businesses decide when public or private cloud is more appropriate?  Continue Reading

• Security Think Tank: Before cloud, engage with asset owners

  Hybrid cloud environments provide the most flexibility, but how can businesses decide when public or private cloud is more appropriate?  Continue Reading

• Living with Google Glass – not quite useful enough to overcome the dork-factor

  Businesses will use Google Glass first, says Simon Dring after spending a few days living with the technology.  Continue Reading

• Where should a CISO look for cyber security answers – hardware, software or wetware?

  While users are often cited as the weakest link in cyber security, they could also be the answer to the problems faced by businesses today  Continue Reading

• Security Think Tank: A pragmatic and practical guide to secure hybrid clouds

  Hybrid cloud environments provide the most flexibility, but how can businesses decide when public or private cloud is more appropriate?  Continue Reading

• Security Think Tank: Cloud is not that different

  Hybrid cloud environments provide the most flexibility, but how can businesses decide when public or private cloud is more appropriate?  Continue Reading

• Why collaboration is the only way to combat cyber threats

  Cyber threats are the most effective way to attack an organisation and those with malicious intent are finding more sophisticated ways of carrying out their activities  Continue Reading

• The state of the VDI industry in 2014

  There were two major technological advancements last year that make virtual desktops much more attractive than in the past  Continue Reading

• Why Europe is wrong to kill Safe Harbour

  Suspending the EU-US Safe Harbour agreement on data protection will do nothing to address surveillance, says international policy analyst  Continue Reading

• Security Think Tank: Consider security training before high-end technology

  How should the Snowden revelations about the NSA and GCHQ be influencing future information security strategies in the UK?  Continue Reading

• Security Think Tank: Snowden leaks highlight a common business vulnerabilty

  How should the Snowden revelations about the NSA and GCHQ be influencing future information security strategies in the UK?  Continue Reading

• Security Think Tank: Snowden likely to prompt security reviews

  How should Edward Snowden's revelations about the NSA and GCHQ influence future information security strategies in the UK?  Continue Reading

• Security Think Tank: Never mind Snowden, think best practice

  How should the Edward Snowden revelations about the NSA and GCHQ be influencing future information security strategies in the UK?  Continue Reading

• Security Think Tank: Snowden proves technology is only part of security

  How should Edward Snowden's revelations about the NSA and GCHQ influence future information security strategies in the UK?  Continue Reading

• Dark data could halt big data’s path to success

  Dark data – data that lacks any control or classification, but is all too prevalent in many organisations – could halt big data's path to success  Continue Reading

• How to prepare the IT workforce for cloud and mobility    

  CompTIA is working to identify the key skills that staff responsible for cloud and mobility implementations need  Continue Reading

• User acceptance testing needs real training, not just a short course

  In spite of its importance, user acceptance testing (UAT) is often chaotic, problematic and ineffective  Continue Reading

• The security education dilemma

  Many employees, including executives, do not understand the implications of security. As a result, organisatons can lose focus  Continue Reading

• Security Think Tank: Targeted attacks drive investments in niche areas of security

  What are the top security issues businesses need to address going into 2014?  Continue Reading

• Security Think Tank: New data sources are 2014 security challenge

  What are the top security issues businesses need to address going into 2014?  Continue Reading

• Security Think Tank: Old and new security challenges in 2014

  What are the top security issues businesses need to address going into 2014?  Continue Reading

• Security Think Tank: BYOD requires focus on security risk in 2014

  What are the top security issues must businesses address in 2014?  Continue Reading

• Security Think Tank: Lock up personal information in 2014, says ISSA-UK

  What are the top security issues businesses must address in 2014?  Continue Reading

• Security Think Tank: KuppingerCole’s security predictions for 2014

  What are the top security issues businesses must address in 2014?  Continue Reading

• Security Think Tank: ISF’s top security threats for 2014

  What are the top security issues businesses need to address going into 2014?  Continue Reading

• So when do employees start following security rules?

  As security needs are rapidly transformed, when do enterprises feel that they are getting on top of information security?  Continue Reading

• Big data, big legal trouble?

  Big data has a range of practical and commercial benefits to businesses but can be fraught with privacy and legal issues  Continue Reading

• C’mon guys – don’t bottle up the Public Services Network; release it

  There is a stark choice between a PSN that has a customer-centric approach to security or one with a locked-down security framework  Continue Reading

• Cyberattack: Top ten tips for working with the business and getting the glory

  Businesses are starting to realise that cyberattacks can pose a potential threat to everything they do  Continue Reading

• Why understanding context is the key to biometric success.

  Since Apple launched the double whammy of the iPhone 5S and 5C in September, internet chatter has focussed primarily on the merits and disadvantages of the new home button on the 5S and whether its biometric fingerprint scanner is ultimately secure ...  Continue Reading

• IT skills shortage still tops the technology agenda

  Many executives in the UK expect to increase investment in IT products and services, but there is an ongoing skills challenge  Continue Reading

• Security Think Tank: Risk of software procurement cannot be ignored

  How can security professionals ensure security testing becomes part of the procurement process for all business software?  Continue Reading

• Technology, society and morality: the implications for technology leaders

  Technology is evolving at a pace and scale that has never been experienced. Society is struggling to keep up with the social and moral implications  Continue Reading

• Security Think Tank: Security testing a vital part of software procurement

  How can security professionals ensure security testing becomes part of the procurement process for all business software?  Continue Reading

• Security Think Tank: Risk-based security will ease software testing challenge

  How can security professionals ensure security testing becomes part of the procurement process for all business software?  Continue Reading

• Security Think Tank: Beef up due diligence

  How can security professionals ensure security testing becomes part of the procurement process for all business software?  Continue Reading

• Security Think Tank: If cost is king, security suffers

  How can security professionals ensure security testing becomes part of the procurement process for all business software?  Continue Reading

• Security Think Tank: How to ensure vendors act efficiently

  How can security professionals ensure security testing becomes part of the procurement process for all business software?  Continue Reading

• Security Think Tank: Security pros need to be plugged into procurement

  How can security professionals ensure security testing becomes part of the procurement process for all business software?  Continue Reading

• Security Think Tank: Procurement and security are uneasy bedfellows

  How can security professionals ensure security testing becomes part of the procurement process for all business software?  Continue Reading

• EU Data Protection Regulation: fines up to €100m proposed

  The proposed EU Data Protection Regulation will require a significant review of existing security and data protection measures, policies and procedures  Continue Reading

• Has your project got stuck PCI syndrome?

  With version 3.0 of PCI-DSS set to be published on 7 November, here are some reasons why PCI projects get stuck and how to unstick them  Continue Reading

• Security Think Tank: Cyber insurance no substitute good security practices

  How can IT security best use the new financial and insurance products available to IT to improve data protection without increasing cost?  Continue Reading

• Security Think Tank: When cyber insurance is right and when it is not

  How can IT security best use the new financial and insurance products available to IT to improve data protection without increasing cost?  Continue Reading

• Outsourcing: The soft underbelly of cyber risks

  Controls imposed on suppliers that are not the same as those imposed internally is a soft underbelly that can expose a business to cyber risk  Continue Reading

• Who owns your LinkedIn account?

  It is common for employees to use personal social networking accounts for work, but who actually owns those accounts?  Continue Reading

• Security Think Tank: Data insurance will not fix broken systems

  How can IT security best use the new financial and insurance products available to IT to improve data protection without increasing cost?  Continue Reading

• Security Think Tank: Cyber insurance is a two-way street

  How can IT security best use the new financial and insurance products available to IT to improve data protection without increasing cost?  Continue Reading

• Security Think Tank: Cyber insurance – buyers beware

  How can IT security best use the new financial and insurance products available to IT to improve data protection without increasing cost?  Continue Reading

• BYOD: data protection and information security issues

  Allowing employees to use their own devices to access company data raises data protection issues that a business must answer  Continue Reading

• Do not overlook the weak link in IT security

  To err is to be human. To remember this is vital. Particularly if you are in charge of IT security  Continue Reading

• Information security in the cloud: Time to switch to panic mode?

  Some people already argue that there is no longer any security in the cloud at all. Is it time to switch to panic mode?  Continue Reading

• Is it time to move from data protection to information management?

  Data can be the most valuable asset of a business, and most organisations take steps to protect it – but unfortunately with variable success  Continue Reading

• Privacy concerns in the digital world

  Considering the full spectrum of privacy, people need to ask themselves if they are comfortable with all their characteristics in the public domain  Continue Reading

• Security Think Tank: Consumer cloud is fine for business, if....

  How can businesses use free or low-cost cloud storage services aimed at consumers, but ensure their data is safe and secure?  Continue Reading

• Security Think Tank: Firms must take responsibility for security in the cloud

  How can businesses make use of free or low-cost cloud storage services aimed at consumers, but ensure that their data is safe and secure?  Continue Reading

• Risk assessment for APTs

  The prevalence and continued success of so-called advanced persistent threats (APTs) often represents a failure of risk management calculations  Continue Reading

• Security Think Tank: Four steps to using public cloud storage

  How can businesses make use of free or low-cost cloud storage services aimed at consumers, but ensure that their data is safe and secure?  Continue Reading

• Operational security: The headache of IT security health checks

  When starting an enterprise project, state that the testing will take three months, that it will be staggered around the go-live date, and not everything will be completely fixed before go-live  Continue Reading

• Security Think Tank: In the cloud, low or no cost means little or no control

  How can businesses use free or low-cost cloud storage services aimed at consumers, but ensure that their data is safe and secure?  Continue Reading

• Security Think Tank: How to keep data secure when resident or used by cloud applications

  How can businesses make use of free or low cost cloud storage services and ensure data is safe and secure?  Continue Reading

• Google, privacy and data protection: One step beyond (the law)?

  A hearing in the High Court has seen Google challenge the applicability of English Law to its operations in the UK, which run off servers based in California  Continue Reading

• IT security: could you be the key?

  Traditional strong authentication methods are useful to business, but must start thinking about how we can extend this to users  Continue Reading

• Is the smart meter programme really doomed? Don’t panic...

  The UK's £11bn smart meter roll-out has been heavily criticised - but is it really the disaster in the making that it has been portrayed?  Continue Reading

• Security Think Tank: Physical security should be replicated in cyber world

  The rapid rise in cyber espionage highlights the need to rethink data security strategies to improve protection of intellectual property. But what is the best way of doing that?  Continue Reading

• Security Think Tank: Five steps to protect IP from cyber espionage

  The rapid rise in cyber espionage highlights the need to rethink data security strategies to improve protection of intellectual property. But what is the best way of doing that?  Continue Reading

• Security Think Tank: IP protection is as weak as the weakest link – fix the supply chain security

  The rapid rise in cyber espionage highlights the need to rethink data security strategies to improve protection of intellectual property. But what is the best way of doing that?  Continue Reading

• Security Think Tank: Follow an information-led, risk-based process to protect IP

  The rapid rise in cyber espionage highlights the need to rethink data security strategies to improve protection of intellectual property. But what is the best way of doing that?  Continue Reading

• Security Think Tank: Identify and protect the crown jewels

  The rapid rise in cyber espionage highlights the need to rethink data security strategies to improve protection of intellectual property. But what is the best way of doing that?  Continue Reading

• Four key questions in disaster recovery planning

  The answers to four key questions will tell you if your organisation’s disaster recovery planning is up to the job  Continue Reading

• Security Think Tank: Your sensitive information is at risk

  The rapid rise in cyber espionage highlights the need to rethink data security strategies to improve protection of intellectual property. But what is the best way of doing that?  Continue Reading

• The Death Of Cloud Has Been Greatly Exaggerated

  Revelations about the extent of US and UK government surveillance on the internet will not mean the death of cloud computing, but companies will change their approach.  Continue Reading

• How to appoint a new outsourcing supplier

  Outsourcing can come with its own security risks if not managed appropriately, making due diligence and clear contractual arrangements key  Continue Reading

• The dangers of internet cafés

  Businesses need clear computer use policies and need to ensure staff are properly trained in data protection, writes Garry Mackay  Continue Reading

• The data fragmentation challenge

  Few organisations have policies to guide where data should and should not be stored. The result: data fragmentation  Continue Reading

• The ideology of hacking

  Business leaders need to be educated on the true threats their firms face and IT security professionals have to arm their executives with that information  Continue Reading

• Understand your security risks

  Information is at risk – and organisations have to adequately protect their corporate information, especially the “crown jewels”  Continue Reading

• How to assess the security of a cloud service provider

  As businesses continue to put more information online, understanding cloud suppliers and agreements has never been more important  Continue Reading

• Security Think Tank: Prism fallout could be worse than security risks

  Does the data collected by Prism put the US Government at risk from other state or non-state sponsored activists?  Continue Reading

• Security Think Tank: Prism is dangerous for everyone

  Does the data collected by Prism put the US Government at risk from other state or non-state sponsored activists?  Continue Reading

• Security Think Tank: Make security and compliance part of workflow to achieve balance

  What is the best way to balance business need for network and application access with security and regulatory requirements?  Continue Reading

• The challenges of information governance in our increasingly litigious age

  Formulating the right enterprise-wide information governance policies is essential in heading off potential legal and compliance costs  Continue Reading

• IT needs soldiers

  The government has recognised that its returning troops can bring value to Britain. Unfortunately it has backed the wrong profession.  Continue Reading

• Cloud security for SMEs: Seven key steps

  Seven steps which SMEs should follow when considering a cloud service, selecting a cloud provider and managing a cloud contract  Continue Reading