What risks are hiding inside your network?
Cisco Senior Manager for Security and Trust, Jack Klecha says the key to understanding the risks in your network start by understanding what are you protecting.
Anthony Caruana | 15 Apr | Read more
Risk Management — News
Airbus Group: The Journey to Infosec Competency
With about 145,000 employees and 160,000 suppliers based in 35 countries representing 130 nationalities, the Airbus Group has been on a long journey over the last five years. The company has transformed company into a security-aware enterprise while continuing production. This is with manufacturing already booked solid for most of the next decade.
Anthony Caruana | 14 Apr | Read more
The week in security: IoT threat can be managed; FBI becomes iPhone hacking supplier
Security is still seen as the biggest obstacle to embracing hybrid cloud environments as concerns over skills and resources surfaced in a recent survey. Little wonder, since security issues can affect anything – whether it's the massive Panama Papers data leak or even hacked routers and PABX systems, the latest victims in a series of attacks over the Easter long weekend.
David Braue | 11 Apr | Read more
RSA Conference 2016 – The Top Five Issues
This year marked my fourth RSA Conference – I’ve attended three in San Francisco and one in Singapore – and each year there are some stand-out issues and themes that dominate discussion.
Anthony Caruana | 18 Mar | Read more
“Dizzying” threat-analytics growth reflects demand for high-speed, hybrid security tools: Arbor exec
Recent rapid growth in the market for threat-analytics tools has been “a little bit dizzying” but new approaches to network security are compensating for limitations on “overwhelmed” security incident and event management (SIEM) tools, according to an Arbor Networks senior executive who has been pleasantly surprised with the strong response to the company's high-speed security technology.
David Braue | 16 Mar | Read more
Security: Architecture vs Sprawl
VMWare CEO Pat Gelsinger says we live in a “state of compromise” where what the business sees as critical is different to what CISOs see as important. When CEOs were asked what most needed to be protected from attacks, they answered reputation. CIOs and CISOs, on the other hand, pointed to regulated data as the most important thing to protect.
Anthony Caruana | 07 Mar | Read more
Security leadership and the role of AI
Our quest to use AI in security is deeply affected by our views and perceptions according to Davi Ottenheimer, the President of flyingpenguin – a security consultancy, designs and assesses risk mitigation. He was formerly the head of information security at Barclays Global Investors, the world’s largest investment fund manager.
Anthony Caruana | 03 Mar | Read more
Outsourced service-response capabilities help organisations bridge security, operations gap
Corporate information-security teams have often found themselves navigating the world of cloud services blindly due to a lack of visibility into those services, ServiceNow's local head has warned as the company repackages its internal service-management capabilities into a managed security services (MSS) offering for use by the general public.
David Braue | 29 Feb | Read more
Without discipline, the open-source dream can become a security nightmare
There was no avoiding the irony after it was recently discovered that a customised version of Google's open-source Chrome Web browser – designed for enhanced security, of all things – had introduced a major security flaw that sent security specialist firm Comodo scrambling for a fix.
David Braue | 23 Feb | Read more
Remotely exploitable bug hits Linux systems
Google is encouraging admins to patch systems after detailing a critical bug in a function in the GNU C Library (glibc) that could put a huge number of Linux system at risk of remote exploitation.
The great Australian IT security spend: More brawn than brains?
A recent IDC FutureScape report examining the implications of IT security in AP claims Australia is the most spendthrift nation, even up against China, when it comes to spending on IT security. Most of this spend goes into security software, as one might expect as security appliances become virtualised and cloud services mature, yet Australia still had more than its fair share of high-profile attacks.
Michael Lee | 09 Feb | Read more
Jobs growth confirms security analysts are the most in-demand IT role: CompTIA
Demand for information-security professionals is growing faster than in any other segment of the IT industry, according to new figures from industry group CompTIA that confirm the strong market value of cybersecurity skills for those who have them.
David Braue | 09 Feb | Read more
Google is giving away 2GB Drive space for 2 minutes of your time
Google is offering 2GB of additional storage capacity on Drive to people who take a few minutes to complete its account security checkup.
Europe and US strike post-Snowden data transfer deal: Privacy Shield
The US and Europe have reached a new agreement they hope will once again legalise personal data transfers across the Atlantic. Critics however think it won’t stand up to a court challenge.
Big data, little state: how will you reclaim your privacy?
Nation states don’t seem keen on protecting people’s fundamental rights to privacy from web giants, so what should be done?
ATO voice recognition goes mobile as biometrics builds mass-market identity nous
Mainstream use of biometric authentication has taken a big step forward as the Australian Taxation Office (ATO) begins using voice biometrics to replace security questions and passwords for taxpayers phoning the organisation's enquiry line.
David Braue | 22 Jan | Read more
Shadow-IT threat bites as analysis finds 23% of shared cloud-app documents available to public
One in ten files shared within cloud applications is exposing sensitive or regulated data to potential compromise, according to an analysis of cloud file-sharing that placed the average potential losses from unmanaged 'shadow IT' at some $1.9m per organisation.
David Braue | 21 Jan | Read more
Endpoint security in “sorry state” as execs lament low security confidence: Cisco
Besieged by threats and struggling with increasingly outdated infrastructure, organisations are revisiting their security architectures to boost dismal levels of confidence in their cybersecurity defences, a Cisco security expert has found in the wake of the company's latest security research.
David Braue | 21 Jan | Read more
The week in security: 8 in 10 health apps insecure; ISIS sidesteps backdoor debate
The new year is always a good time for new beginnings – and this includes reviewing your security policies to ensure they're up to date with your changing business. CSO offers a range of policy templates and tools to give you best-practice guidance to get you started, while newly-minted security interest Forcepoint was working to equip CSOs with a better metric to track organisational security posture when dealing with the board.
David Braue | 18 Jan | Read more
Dangerous bugs in older Internet Explorer won’t see patches today
There's a remote code execution bug affecting Internet Explorer (IE) 7 through to 11, but only IE 11 will receive a patch today. That means the most important update on Microsoft's first Patch Tuesday of the year will be to get rid of older version of IE