Misconfigured firewalls aren't necessarily a result of technical issues. Often, there are business or staff issues that can be easily addressed to improve security. Jerry Skurla of FireMon explains how.
State-sponsored attacks are up significantly, so organizations need to rely on new, stronger controls to ward off advanced threats. John Gordineer of Dell SonicWALL discusses the role of next-generation firewalls.
Over the past decade, many organizations shifted their security focus from regulatory compliance to metrics business intelligence. What's the latest shift? Vivek Shivananda of Rsam explains.
Who are the threat actors, what are their techniques and when are they apt to attack? This is the type of threat intelligence all organizations need, says Scott Kaine of Cyveillance.
The new HIPAA Omnibus Resource Center provides timely insights for covered entities and business associates trying to meet the Sept. 23 compliance deadline for compliance with the new rule.
When it comes to breach prevention, many organizations are improving their own security posture, but neglecting that of their strategic partners.
It's a wide gap that far too few organizations even recognize, says Tom Kellermann, vice president of cybersecurity at Trend Micro.
In this week's breach roundup, read about the latest incidents, including a breach involving a medical group's payroll-related information and a stolen laptop at a long-term care insurer.
National Security Agency Director Keith Alexander declined to say that the agency would stop using contractors in top secret IT positions to prevent a leak such as the one that exposed NSA programs to collect metadata on American citizens.
If you want to be in the know about cybersecurity, consider getting the latest version of NIST's Glossary of Key Information Security Terms, which provides 1,500 definitions.
The FDA has issued draft guidance urging medical device makers to develop cybersecurity controls. It has also released tips for how healthcare organizations can mitigate cybersecurity risks to devices.
The information security industry needs to hit rock bottom, says Akamai's Joshua Corman. And then - to truly improve information risk management - it needs to develop a new, adversarial view of the world.
Globally, across industries, DDoS attacks are getting larger, says Susan Warner of Neustar. But are the attacks aimed more at disrupting organizations, or distracting them, so fraud can be committed?
In the face of advanced threats, organizations need to shift their security posture from breach prevention to incident response, says Tom Cross of Lancope, who discusses new strategies.
Mobile device management and application security are just two aspects to consider. What about network security? Dave Jevans of Marble Security discusses a three-tiered approach to mobile security.
Having the right log and access management tools in place - and not all tools are used by all agencies at all times - doesn't mean that the proper authorities are alerted in a timely manner to activities that could jeopardize the nation's security.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing healthcareinfosecurity.com, you agree to our use of cookies.
