by Binoy KL | Aug 14, 2012 | Corporate Security, Incident Management, Standards & Compliance
NIST has published the final version of their guide on Computer Security Incident Handling. This guide is built based on the best practices adopted by governments, other non-commercial organizations and business organizations. This version emphasise the importance of...
by Binoy KL | Apr 12, 2012 | Corporate Security, PCI DSS Compliance, Standards & Compliance
Many information security professionals, event at the senior level roles, are still getting the internal control mechanisms such as Dual Control and Segregation of duties wrong. I often see that they are confused between the concepts of Dual Control and Segregation of...
by Binoy KL | Mar 26, 2012 | Passwords, PCI DSS Compliance, Standards & Compliance
Usernames and passwords is still the major method of authenticating users to the systems. It would be difficult to find someone without a user name and password in the workplace. In addition, personal usernames and passwords often come into picture when people access...
by Binoy KL | Feb 2, 2012 | Standards & Compliance
Division of Corporation Finance at Securities and Exchange Commission has released guidance on reporting the cyber security risks and cyber incidents. This has come after the realization of the SEC that a cyber security incident can have a direct impact on the...
by Binoy KL | Jan 28, 2012 | Cloud Security, Standards & Compliance
Cloud computing is gaining its popularity in an accelerated mode and many businesses and government entities are adopting cloud computing for supporting their business needs. NIST has recently released a a special publication on .Guidelines on Security and Privacy in...
by Binoy KL | Mar 9, 2010 | Standards & Compliance
NIST has recently released the final publication of the “Guide for Applying the Risk Management Framework to Federal Information Systems: A Security Life Cycle Approach”. This NIST special publication (NIST Special Publication 800-37, Revision 1) can be...
Recent Comments