Unfortunately the national security issues relating to sensitive content is no laughing matter. The big news isn’t that emails are being stolen but that people thought that it was secure in the first place. 2 Secure your email system At the bare minimum implement 2 factor authentication and encryption on your email archive. This seems complex but public cloud hosted services and software based security solutions have made this easier. Junaid Islam. MORE

In his final months in office, the Secretary of Homeland Security Jeh Johnson gives us his assessment of the state of the nation’s security. CTO Cyber Security News Video Jeh Johnson United States Secretary of Homeland SecurityMichael Johnson. MORE

Defense-in-depth, the gold standard in cyber security, has failed. The basis behind defense-in-depth is to deploy redundant layers of security products to defeat every part the cyber kill chain. Conceptually the new security stack is a hardware-based virtual enclave. MORE

MS13-080 | Cumulative Security Update for Internet Explorer This security update resolves 9* issues in Internet Explorer. MS13-081 | Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code Execution This security update resolves seven issues in Microsoft Windows. MORE

But the erosion of the network perimeter is making traditional security a roadblock to efficiency. No one wants to allow holes to be poked in the security system but no one wants to shut down connectivity to partners either. Secure connectivity is provided only to trusted users and devices. The SDP approach was pioneered by proven enterprise IT, cloud computing and security experts working collaboratively together under the Cloud Security Alliance (CSA). MORE

At Ascent, we have been investing in IT security for decades. As technology platforms shift, security solutions must both shift with them as well as rise to meet a more severe threat landscape posed by today’s sophisticated cyber criminals and nation-state sponsored hackers. As recent RSA conferences have shown, the challenge – and opportunity – posed by IT security has received massive interest and funding in recent times. MORE

Information security teams can spend all the money in their budget on fancy technology but it’s for naught if employees don’t use it. They should base their campaigns on the six root causes that are most likely to motivate employees to behave securely or not. MORE

There are few things more unsettling for a company than being the victim of a security breach. If you’re looking to recover from your own security breach, it’s best to keep the following tips in mind. Cyber Security Cyber Threats NewsRick Delgado. MORE

With each new threat, digital security companies are learning to react more quickly and put out countermeasures for these malicious programs, but in the time between a piece of malware’s release into the wild and the release of the solution, it can cost companies a staggering amount of money. MORE

Since 2000, secure networks have been built by segmenting traffic at the switch port level from server to server, radically limiting east-west traffic. Today, most opens systems, servers, routers, and switches ship with all the security controls open. Illumio Adaptive Security Platform. MORE

The company's custom silicon enables security at the firmware level. Design Hardware Hewlett Packard Enterprise SecurityRead More. MORE

He is highly regarded for his mastery of network cyber security, IP communications technology and TCP/IP networking. The topic of the special focus area Sean is helping edit is "Bio-Inspired Cyber Security and Networking.". Adaptation algorithms for cyber security & networking. MORE

Cloud Computing Microsoft Security SharedOne company says it will use scores in determining cyberinsurance premiums Read More. MORE

Solarflare is a leading provider of application-intelligent networking I/O software and hardware that facilitate the acceleration, monitoring and security of network data. CTO Cyber Security Infrastructure Companies News Security Companies SolarflareResearch Team. MORE

With this post we are initiating coverage of Firemon, provider of proactive security intelligence and governance capabilities. Firemon enables enterprises to continuously analyze, visualize and improve the capabilities of your existing network security infrastructure. MORE

High demand and a limited pool of people with the right skills and experience make information security staffing a perennial challenge. Further complicating things is the fact that information security teams have not yet adapted to their changing role in digitizing companies. MORE

However, some concerns about cloud security risks appeared early in the industry and are still relevant today. Both providers and customers must ensure that all data transfers occur over secure channels. Carol M. Evenson. MORE

For context see the short introduction at this video: Vidder is changing how modern day enterprises approach security in an increasingly untrusted IT landscape. PrecisionAccess™ enables secure, trusted access to critical business applications in today’s perimeterless enterprise. MORE

The title of his talk is "Pushing Computers to the Edge: Next Generation Security and Privacy Controls for Systems and IoT Devices.". The full presentation is at this link and embedded below: CTO Cyber Security NewsBob Gourley. MORE

Hadoop Security: Protecting Your Big Data Platform is packed with the protective strategies, tips and techniques you will want to build into your designs early in your data modernization efforts. Title: Hadoop Security. Security is typically the longest phase of any Hadoop project. MORE

What does this mean for cloud security? · This rapid shift to the cloud raises new issues and challenges for security and risk professionals. Traditional perimeter-based security tools do little to protect cloud workloads. Securing data and applications that reside in the cloud is increasingly critical as more mission-critical apps and high-value data and intellectual property move to the cloud. Cloud Security. cloud access security brokers. MORE

QuintessenceLabs is fielding practical answers to cyber security challenges in ways that are directly supporting the goals of this plan as well as the real world practical needs of organizations across government and industry. Their Trusted Security Foundation (TSF) is the first key manager that integrates quantum true random for the strongest keys, and the security of an HSM, and that integrates seamlessly into existing architectures. Katie Kennedy. MORE

This feat alone requires world class best technology design, operation, maintenance and security skills. Verisign provides services and technology capabilities to enterprises including Managed DNS, Recursive DNS, DDoS protection and security threat intelligence offerings. MORE

Security professionals by their nature are risk averse. Thus it’s no surprise that the security industry is defined by incremental innovation. Unfortunately "innovative security" strategy is leading to an increase in cyber security failures. Junaid Islam. MORE

Today we released Security Advisory 2914486 regarding a local elevation of privilege (EoP) issue that affects customers using Microsoft Windows XP and Server 2003. Advisory Microsoft Windows Security Advisory Security Attack Windows Vista and later are not affected by this local EoP issue. A member of the Microsoft Active Protections Program (MAPP) found this issue being used on systems compromised by a third-party remote code execution vulnerability. MORE

Azure IoT engineering head says bar is low in IoT security, and government should get involved Read More. Business Cloud Featured Internet of Things Microsoft Regulation Security MORE

The Information Security Profession – Where do I Start? I am often asked by individuals to provide advice or guidance on how to get started in the field of information security. Cyber InfoSec education infosec security awareness tools training MORE

Whether or not Roberts’ claims were true or whether or not his intentions were malicious, he brought to light the significant need to readdress aviation cyber security. During the 2015 Global Connected Aircraft Summit , a session was dedicated to the topic of aviation cyber security: “Cyber Security: How Can a Connected Aircraft Manage This Threat?” The increase of technology does not match the increase in technology security. MORE

Security alarm systems have communicated with operations centers and police for a long time, but now allow monitoring and control from your smartphone. With these burgeoning capabilities, there needs to be some focus on cyber security. By George Romas. MORE

I'll be there at the Aria Resort and Casino in Las Vegas attending as a social media representative with a full access pass and an invitation to meet and interview Dell executives and security technology leaders. You can find it at Dell Peak Performance 2015 !!! MORE

For example, see our post titled Cyber Security and Corporate Governance: The five principles every corporate director should embody. Another source of insight we like is the Security and Exchange Commission. Analysis CTO Cyber Security Treasury Board of directors NACD MORE

It’s time to wake up and recognize that while new innovation and the benefits of connectedness is extraordinary, they clearly comes with major risk if security measures aren’t taken more seriously and put on the top of the priority list. Security & Compliance MORE

For a long time, the home security industry has been dominated by big companies that offered an all-inclusive home security system. The wholesome security system was ideal for many consumers with various security needs. However, in recent years, emerging companies that use innovative technology have invaded the home security industry. These companies and startups mainly focus on providing specific security solutions at affordable rates. Jeremy Sutter. MORE

Lately there has been some articles and conversations around the security profession, particularly the ‘how to get started’ aspect. My good friend, Aamir Lakhani wrote a great article on getting started in cyber security ([link] I thought I would add some additional considerations for aspiring security professionals by describing the two primary aspects of operational […]. Cyber education infosec security awareness tools training MORE

It also complicates many aspects of data security for any enterprises doing business across the Atlantic Ocean. This recent ruling highlights the value of having a strong security partner shepherding your enterprise through these types of perturbations. MORE

At the same time, though, you might well be ignoring the biggest security threat your business will ever face. When it comes to data security, we hear a lot about how cyber attackers are becoming more sophisticated or that cloud technology is full of risks,” writes Dustin Childs of TechCrunch. MORE