Applications, Authentication, Information Security and Policies

Patient Portal Puts a Spotlight on Secure Messaging

CTOvision

AUGUST 15, 2014

Healthcare professionals, hospitals and their technology vendors need to ensure appropriate security measures are in place to avoid jeopardizing incentive payments, or they risk receiving financial penalties for non-compliance. Secure Messaging Requires Authentication and Secure Networks. Network Security.

Security

Security Healthcare Authentication Information Security

Key considerations to cancer institute’s gen AI deployment

CIO Business Intelligence

JUNE 6, 2024

The governance group developed a training program for employees who wanted to use gen AI, and created privacy and security policies. While GPT4DFCI isn’t allowed to be used for clinical purposes, as the governance committee has stipulated, it’s been reviewed by the privacy and information security teams for safety and efficacy.

Government

Government Tools Vendor Management Examples

How to gain a five star security reputation in hospitality

CIO Business Intelligence

JANUARY 9, 2024

Indeed, hotel customers can now book their stay via the corporate website, online travel agencies, such as www.booking.com or www.expedia.com , or hotel applications on their smartphones – in addition to traditional payments at the payment terminal located at the front desk of the hotel. Four recommended steps in the PCI DSS v4.0

Security

Security Hotels How To Applications

Webinars

Don’t Get Left Behind: Leveraging Modern Product Management Across the Organization

MORE WEBINARS

Low code/no code tools reap IT benefits—with caveats

CIO Business Intelligence

JANUARY 5, 2023

Low-code/no-code visual programming tools promise to radically simplify and speed up application development by allowing business users to create new applications using drag and drop interfaces, reducing the workload on hard-to-find professional developers. So there’s a lot in the plus column, but there are reasons to be cautious, too.

Tools

Tools Applications CTO Development

United Airlines CISO Deneen DeFiore on elevating cyber’s value to the business

CIO Business Intelligence

MAY 25, 2023

Deneen DeFiore is a Hall of Fame technology executive who currently serves as vice president and chief information security officer at United Airlines, where she leads the cybersecurity and digital risk organization to ensure the company is prepared to prevent, detect, and respond to evolving cyber threats. What are we doing about it?

Airlines

Airlines Meeting Policies Information Security

Optimizing PCI compliance in financial institutions

CIO Business Intelligence

JANUARY 4, 2024

The CCA allows overarching enterprise functions and IT shared services to be assessed separately from the business unit’s products/applications that require PCI security compliance. How can implementing a CCA benefit financial institutions and their various business units in their quest for PCI security compliance?

Financial

Financial Architecture Resources Security

3 ways to deter phishing attacks in 2023

CIO Business Intelligence

OCTOBER 20, 2022

It enhances the efficiency and effectiveness of security policies by improving and automating routine threat detection procedures. AI-enabled automation can help organizations put in place a variety of anti-phishing measures: Deploy anti-malware, antivirus, and anti-spam tools and keep key applications patched and updated.

Training

Training Banking Social Malware

Zero Trust Security for NIS2 compliance: What you need to know

CIO Business Intelligence

SEPTEMBER 12, 2023

Over 100,00 organizations are expected to be impacted by Network and Information Security Directive (NIS2) cybersecurity standards that European Union (EU) member states must implement by October 2024. [i] Are you enforcing security standards before allowing a device onto the network? i] S ievers, T. Cybersecur.

Security

Security Network Architecture Resources

Zero Trust Model: How It Looks to the NSA

SecureWorld News

MARCH 1, 2021

In addition to adopting the Zero Trust mindset, it also mentions some guiding principles to use: Never trust, always verify – "Treat every user, device, application/ workload, and data flow as untrusted. Authenticate and explicitly authorize each to the least privilege required using dynamic security policies.".

Resources

Resources Network LAN Security

Top Ten Ways Not To Sink the Kubernetes Ship

Linux Academy

MARCH 28, 2019

To ensure ongoing security site reliability engineers must work hand-in-hand with the CISO’s (Chief Information Security Officer) office to implement Kubernetes security. RBAC (Role Based access Control) has become a standard for the Kubernetes Authentication-Authorization-Admission security paradigm.

Policies

Policies Linux Security Virtualization

You’re not alone in the cyber battlefield

Dataconomy

SEPTEMBER 6, 2023

ISO 27001 is an internationally recognized standard for information security management. It provides a framework for organizations to manage and protect their sensitive information, including financial data, customer details, and intellectual property. What is ISO 27001?

Security

Security Information Security Data System

Common Techniques Hackers Use to Penetrate Systems and How to Protect Your Organization

ForAllSecure

APRIL 26, 2023

Social Engineering According to Carnegie Mellon University’s Information Security Office , “Social engineering is the tactic of manipulating, influencing, or deceiving a victim in order to gain control over a computer system, or to steal personal and financial information.

System

System Malware How To Engineering

Penetration Testing Remote Workers

SecureWorld News

JUNE 28, 2020

This has not changed with remote workers and should not be considered as part of any new policies and scope. Odds are, your employee code of conduct and security policies do not contain any such provisions, nor would teams sign off on their inclusion. Social media accounts associated only with personal, non-business usage.

Social

Social Network Engineering Authentication

Industry leaders set cloud computing security benchmarks

Cloud Musings

MAY 28, 2015

According to a recent CRN article , commercial cloud security platforms are helping enterprises mitigate the risks of using cloud-based applications and services. In order to gain this certification, a candidate must demonstrate hands-on information security and cloud computing experience.

Industry

Industry Cloud Security Dell

Industry leaders set cloud computing security benchmarks

Cloud Musings

MAY 28, 2015

According to a recent CRN article , commercial cloud security platforms are helping enterprises mitigate the risks of using cloud-based applications and services. In order to gain this certification, a candidate must demonstrate hands-on information security and cloud computing experience.

Industry

Industry Cloud Security Dell

4 Steps to Data-first Modernization

CIO Business Intelligence

APRIL 29, 2022

3x more likely to prioritize applications over infrastructure. The strategy should put formalized processes in place to quantify the value of different types of information, leveraging the skills of a chief data officer (CDO), who should form and chair a data governance committee. Data has rights and sovereignty.

Data

Data Strategy Cloud Architecture

Top 10 Quotes About Cloud Security

SecureWorld News

NOVEMBER 30, 2020

So every breach you've seen associated with them, and it's been billions of records over the last couple years, is because somebody accidentally assigned too permissive a policy to that storage bucket. Listen to the rest of our Fireside Chat podcast with Dr. Larry Ponemon on the state of information security: #5.

Cloud

Cloud Security Fractional CTO Backup

Impact of technology on insurance industry

Hacker Earth

MARCH 29, 2018

IT security (53%). Digital identity authentication regulations (45%). Along with cutting down operational costs and ensuring fast, reliable, and secure applications, blockchain has the potential to disrupt existing business models in several ways. For instance, Lapetus lets you buy a policy with a selfie!

Insurance

Insurance Industry Big Data Artificial Intelligence

Defense in Depth: Protecting the Organization’s Data

CTOvision

MARCH 27, 2017

When data breaches do occur, the information exposure, financial impact and PR damage can take years to repair. Security managers around the globe are facing the unavoidable truth that network and device protection are not enough. The Smartcrypt Platform consists of an end-user application and a web-based manager console.

Data

Data Policies Security Applications

DCAP Systems: Protecting Your Data with Advanced Technology

SecureWorld News

APRIL 30, 2023

Huge arrays of unstructured data utilized and modified by many users as well as the ever-growing complexity of attacks, lead to the fact that the usual means of protecting the perimeter of a corporate network no longer meet current information security requirements. What is Data-Centric Audit and Protection?

System

System Data Information Security Security

Federal Government Signals Interest In Several Key Leading Edge Technologies

CTOvision

DECEMBER 15, 2014

An autonomic computing system would control the functioning of computer applications and systems without input from the user, in the same way that the autonomic nervous system regulates body systems without conscious input from the individual. Application Streaming / Virtualization. 3D Printing Design & Implementation.

Government

Government Artificial Intelligence Virtualization Big Data

Securing Critical Infrastructure with Zero Trust

CIO Business Intelligence

JANUARY 13, 2023

With the emerging hybrid workforce and accelerating cloud migration , applications and users are now everywhere, with users expecting access from any location on any device. The implied trust of years past, where being physically present in an office provided some measure of user authenticity simply no longer exists.

Security

Security Authentication Network System

4 tips to improve employee experiences while maintaining security and governance

CIO Business Intelligence

JULY 7, 2023

Tip 1: Embrace the need for balance Hybrid work models have shifted the goalposts for just about all organizational objectives, especially in terms of providing employee experiences that are both productive and secure. IT and security teams must strike the proper balance between the two.

Government

Government Security Education Enterprise

National Cyber Security Hall of Fame Announces 2015 Inductees

CTOvision

SEPTEMBER 14, 2015

The National Cyber Security Hall of Fame is composed of individuals who collectively invented the technologies, created awareness, promoted and delivered education, developed and influenced policy, and created businesses to begin addressing the cyber security problem. These innovators truly deserve a place in the Hall of Fame.

Security

Security Education Policies Engineering

April Intro | Roadmap to Securing Your Infrastructure

Linux Academy

APRIL 1, 2019

Why do I bring up car care when this is an information security blog? Believe it or not, there’s a lot to talk about when it comes to passwords: from password requirements (such as complexity and length) to password managers and policies, as well as some ideas for making your infrastructure more secure — and your life a little easier!

Security

Security Policies Backup Linux

The Hacker Mind Podcast: What Star Wars Can Teach Us About Threat Modeling

ForAllSecure

JANUARY 22, 2023

Having a common framework around vulnerabilities, around threats , helps us understand the information security landscape better. Literally, how the rebellion fighting the Empire has echoes in how we approach and mitigate information security threats. How does he authenticate? In a moment, we’ll find out.

Engineering

Engineering Security Microsoft Film

Information Technology Zone

Patient Portal Puts a Spotlight on Secure Messaging

Key considerations to cancer institute’s gen AI deployment

Webinars

Trending Sources

How to gain a five star security reputation in hospitality

Webinars

Low code/no code tools reap IT benefits—with caveats

United Airlines CISO Deneen DeFiore on elevating cyber’s value to the business

Optimizing PCI compliance in financial institutions

3 ways to deter phishing attacks in 2023

Zero Trust Security for NIS2 compliance: What you need to know

Zero Trust Model: How It Looks to the NSA

Top Ten Ways Not To Sink the Kubernetes Ship

You’re not alone in the cyber battlefield

Common Techniques Hackers Use to Penetrate Systems and How to Protect Your Organization

Penetration Testing Remote Workers

Industry leaders set cloud computing security benchmarks

Industry leaders set cloud computing security benchmarks

4 Steps to Data-first Modernization

Top 10 Quotes About Cloud Security

Impact of technology on insurance industry

Defense in Depth: Protecting the Organization’s Data

DCAP Systems: Protecting Your Data with Advanced Technology

Federal Government Signals Interest In Several Key Leading Edge Technologies

Securing Critical Infrastructure with Zero Trust

4 tips to improve employee experiences while maintaining security and governance

National Cyber Security Hall of Fame Announces 2015 Inductees

April Intro | Roadmap to Securing Your Infrastructure

The Hacker Mind Podcast: What Star Wars Can Teach Us About Threat Modeling

Stay Connected