A new service from Australian research and consultancy firm Security in Depth aims to help enterprises minimise risk through a new ‘credit score’-style rating that assesses the security maturity of suppliers that integrate with their systems.
Cyber security data is influencing decisions at board level as more companies take IT threats seriously according to the latest Gartner information security governance survey.
National security may be at stake as private businesses try to manage a growing number of cyberthreats, but IT professionals shouldn't have to bear that burden alone.
An analytics company is trying a novel approach to evaluating risk: by putting a price on it.
Data encryption could help enterprises protect their sensitive information against mass surveillance by governments, as well as guard against unauthorized access by ill-intended third parties, but the correct implementation and use of data encryption technologies is not an easy task, according to security experts.
Plugging network security leaks is an essential responsibility for companies, private organizations and technology professionals. Achieving that goal requires discovery tools that scour every asset, including those not currently under management, and also map connectivity between institutions involved with an organization's sensitive information around IT compliance, corporate security, product development, critical infrastructure protection and other relevant issues.
Dr. John Halamka, CIO at the hospital where Boston Marathon bombing patients and suspects have been treated over the past week, has shared in a blog post Tuesday lessons learned from an IT and security management perspective.
Earlier this week Richard Stiennon published an article that questions the value of risk management in IT, and I would argue that, although risk management presents challenges to IT, best practice-driven approaches leveraging aspects of risk management are essential to good security.
The need to manage risk will result in organisations adopting hybrid clouds as the preferred cloud delivery model, according to Dean Kingsley, who heads the technology risk practice within the Enterprise Risk Services division at Deloitte in Sydney.
Public companies may need to look more closely at their exposure to cyberattacks after new guidelines were released this week by the U.S. Securities and Exchange Commission.
Poor data quality is robbing insurers and financial institutions of between 15 and 25 per cent of operating profits, exposing it as low hanging fruit for the growth-starved financial services industry.
The Asia-Pacific financial markets industry is tipped to spend $US18 billion on IT by 2015, according to analyst firm Ovum.
Over the last two decades, the primary contribution of information technologies in firms has been about efficiency and enablement: to improve processes, make people more productive, reduce time to market, or enable things that couldn't be done previously.
It could be a natural disaster that closes cities for days at a time, or a power failure that knocks out corporate e-mail systems for a few hours. An endless variety of potential business disruptions confronts finance executives. And when crisis comes, or even if it doesn't, it's largely up to the vigilant CFO to make sure the company has a strong, workable business continuity plan.
While the race between industrial control system attackers and defenders didn't start with the Stuxnet worm, it certainly acted as a catalyst to a new arms race and more researchers taking a closer look at the quality of SCADA software.