Page 165 - Latest interviews and insights on healthcare information security

Incident & Breach Response

Mandiant on Nation-State Threats

Tom Field • April 30, 2013 10 Minutes

Security firm Mandiant recently released a widely publicized report detailing cyber-espionage activity originating in China. Mandiant Director Charles Carmakal discusses the latest nation-state threats.

Events

Growing the Global Security Community

Tom Field • April 29, 2013 15 Minutes

When Richard Nealon first sat for his CISSP exam, he was struck by how U.S.-centric the questions were. Since then, he has strived to promote greater awareness of global information security concerns.

Governance & Risk Management

240 Ideas to Secure Critical IT

Eric Chabrow • April 29, 2013 8 minutes, 42 seconds

NIST's Donna Dodson is leading a federal government effort to take hundreds of suggestions from the private sector to create an IT security best practices framework that critical infrastructure operators could voluntarily adopt.

Account Takeover Fraud

Utah Breach: The Potential Costs

Marianne Kolbasuk McGee • April 29, 2013 12 Minutes

Although there have not yet been any confirmed reports of financial fraud associated with a major data breach at the Utah Department of Health last year, the potential for costly fraud is huge, contends Al Pascual of Javelin Strategy and Research.

Attack Surface Management

Cyber-Attacks: The New Maturity

Tom Field • April 25, 2013 15 Minutes

It isn't just the quantity of cyber-attacks that's staggering; it's the quality. The average hacker now has access to nation-state-level attack capabilities, says James Lyne of Sophos. How can organizations defend?

Events

Addressing the Skills Crisis

Tom Field • April 25, 2013 5 Minutes

It isn't a staffing shortage that we face, but rather a skills crisis, says Allan Boardman, international vice president of ISACA. How can organizations build the security skills they need to mitigate evolving risks?

Attack Surface Management

The New Era of Third-Party Risks

Tom Field • April 25, 2013 10 Minutes

Organizations face new cyber-risks from their third-party service providers. But standard contracts fail to cover these risks. Trend Micro's Tom Kellermann discusses the risk management essentials.

Events

Privacy Across Borders

Tom Field • April 24, 2013 5 Minutes

As data protection regulations continue to be refined, organizations throughout Europe are more sensitive to privacy restrictions in individual countries, says Dwayne Melancon, CTO of Tripwire.

DDoS Protection

Why DDoS Attacks Are 'No Big Deal'

Tom Field • April 24, 2013 7 Minutes

Distributed-denial-of-service attacks are increasing against European banking institutions. But UK consultant Mark Child says if banks are worried about DDoS, then they have bigger security problems.

Professionalizing the IT Security Field

Eric Chabrow • April 23, 2013 8 Minutes 29 Seconds

Should IT security practitioners be deemed professionals like those in medicine and law? That's not an easy question to answer, says Ronald Sanders, former human capital officer at the U.S. Office of the Director of National Intelligence.

Business Continuity Management / Disaster Recovery

Verizon Report: DDoS a Broad Threat

Tracy Kitten • April 23, 2013 12 Minutes 36 Seconds

Distributed-denial-of-service attacks jumped significantly in 2012. And it's not just banking institutions that are victims, Verizon finds in its just-released Data Breach Investigations Report.

Attack Surface Management

ENISA Aims for Longer, Stronger Role

Tom Field • April 22, 2013 20 Minutes

The European parliament recently voted to extend and strengthen the European Network and Information Security Agency. What does this news mean for Europe's top cybersecurity agency and for the state of emerging threats across Europe?

Business Continuity Management / Disaster Recovery

Boston Lockdown: Business Continuity

Eric Chabrow • April 19, 2013 4 minutes 36 seconds

The hunt for a Boston Marathon bombing suspect that locked down the city caused massive disruption to business operations, but enterprises that had business continuity plans in place hardly missed a beat.

Governance & Risk Management

HIPAA Omnibus: Tips for Clinics

Marianne Kolbasuk McGee • April 18, 2013 15 Minutes

When it comes to HIPAA Omnibus Rule compliance, smaller physician practices must guard against complacency because they could be held accountable, warns compliance expert Marjorie Satinsky.

Attack Surface Management

Post-Breach Credit Monitoring Strategies

Howard Anderson • April 17, 2013 11 minutes

To retain their customers after a breach of sensitive information, organizations should take the extra step of calling those affected to offer free credit protection services, says security expert Brian Dean.