Latest News

Governance & Risk Management

The Fundamentals of Risk Management

Tom Field  •  August 13, 2010

Debbie Christofferson of the Information Systems Security Association on risk management trends, career opportunities.

Fraud Management & Cybercrime

Social Media Policy - The 6 Essentials

Upasana Gupta  •  August 11, 2010

Fear of data loss and inappropriate behavior leads many employers to introduce strict controls on access to social media sites. Here are the six essentials of an effective social media policy.

Business Continuity Management / Disaster Recovery

IT's Role in Disaster Responses

Howard Anderson  •  August 11, 2010

The United States has a long way to go in leveraging information technology to minimize the health impacts of natural disasters, disease outbreaks, terrorist attacks and other incidents.

HIPAA/HITECH

Federal Funds Boost Security Training

Upasana Gupta  •  August 10, 2010

The HITECH Act will fund training for 300 new healthcare information security specialists at university programs that start this fall.

Professional Certifications & Continuous Training

Same Goal, Differing Approach to Certification

Eric Chabrow  •  August 10, 2010

The role of trainers in awarding IT security certifications.

Cloud Security

Cloud Computing: The Case for Certification

Tom Field  •  August 5, 2010

Jim Reavis of the Cloud Security Alliance on leaders, fast-followers and the business value of the cloud computing certification.

Electronic Healthcare Records

EHR Shoppers: Ask Plenty of Questions

Howard Anderson  •  August 5, 2010

Physician group practices shopping for an electronic health record system need to ask vendors plenty of security questions to avoid problems after implementation.

Professional Certifications & Continuous Training

Defining the Term Certification

Eric Chabrow  •  August 4, 2010

When Should Infosec Trainers Certify Their Students?

Security Awareness Programs & Computer-Based Training

Beware Phishing via Fax

Linda McGlasson  •  July 29, 2010

To educate consumers and businesses about offline attacks, the Anti Phishing Working Group has stepped in to help by creating a new consumer fax education initiative in conjunction with the IRS.

Account Takeover Fraud

What it Takes to Fight Fraud

Upasana Gupta  •  July 26, 2010

Because fraudsters are constantly creating more diverse and complex schemes using advanced technology, the role of a fraud investigator has evolved

Governance & Risk Management

University Offers New Cybersecurity Degrees

Upasana Gupta  •  July 22, 2010

The University of Maryland University College will offer a new online cybersecurity program this fall at both the bachelor's and master's degree levels.

Professional Certifications & Continuous Training

IT Security Profession: Heal Thyself

Eric Chabrow  •  July 22, 2010

Cybersecurity Lessons to Be Learned from the Medicine Field

Professional Certifications & Continuous Training

Harsh Words for Professional Infosec Certification

Eric Chabrow  •  July 21, 2010

Commission: Creating a Dangerously False Sense of Security

Governance & Risk Management

GRC Challenge for Security Pros

Upasana Gupta  •  July 16, 2010

"This is the growth toward senior management I have always wanted," says Phillip Foley of Verizon Cybertrust Security

API Security

It's Time to 'Take Security Out of the Closet'

Tom Field  •  July 14, 2010

Interview with Jonathan Penn of Forrester Research on Cloud Computing, Mobility and Other Hot Emerging Technologies.