GovInfoSecurity.com

The Need for Better API Management

Andy Thurai, Chief Architect, Application Security & Identity, Intel

• 

  Tweet

  Addressing Security Beyond the Firewall

  Andres Kohn of Proofpoint on New Challenges

  Securing the cloud and protecting information beyond the firewall are two key issues for the year ahead, says Andres Kohn, vice president of technology at Proofpoint. He also offers predictions on the future of the BYOD trend.

  Listen to the interview

• 

  Tweet

  Grappling with BYOD

  Harsh Reality: 80% of Users Employ Personal Devices

  Bringing your own device to work is here in a big way, and companies must learn to deal with it in a security context, says Cameron Camp, security researcher at eSet.

  Listen to the interview

• 

  Tweet

  Critical Role of Non-Techies in Infosec

  Getting Value of Information Security

  With a growing number of non-technologists overseeing IT security - chief financial or chief legal officers, for instance - it's incumbent for the technologists to explain the value in IT security investments in ways their bosses can understand, says Tripwire Chief Technology Officer Dwayne Melancon.

  Listen to the interview

• Article

  Feds' Enterprise Approach to Cybersecurity

  Getting Agencies to Harmonize on the Way They Secure IT By Jeffrey Roman
  

  Tackling cybersecurity as a single enterprise, rather than through 26 major and 100-plus smaller departments and agencies, is one of the Obama administration's IT security aims, White House Cybersecurity Coordinator Howard Schmidt says.

• Article

  How CSOs Can Be More Effective

  Security Officers Becoming Part of the Corporate Conversation By Jeffrey Roman
  

  Jason Clark, CSO of Websense, has spent a significant amount of time meeting with over 400 CSOs. From his interactions, Clark offers his advice on how chief information security officers can be more effective.

• Article

  Breaches Change the Discussion

  The Impact of 2011's Events on RSA Conference 2012 By Jeffrey Roman
  

  The rise in hacktivism and data breaches changed the information security landscape. These incidents also influenced the content of RSA Conference 2012, says Hugh Thompson, event program committee chair.

• Article

  Building DHS's All-Star Cybersecurity Team

  A Conversation with Deputy Undersecretary Mark Weatherford By Eric Chabrow
  

  If you want to get a sense of how Mark Weatherford will help reshape the way the federal government approaches IT security, look at one of his first hires: John Streufert.

• Blog

  Revelations from RSA 2012

  Pros: Self-Learn and Embrace Available Resources By Hord Tipton
  

  Earlier this month, I had the chance to attend RSA Conference 2012, which always reminds me how fluid our industry is, and how important it is to stay educated and abreast of change.

• Article

  How to Use Threat Intelligence

  Jon Ramsey of Dell SecureWorks on Managing Today's Threats By Information Security Media Group
  

  "If you talk to CSOs, they don't worry about what they know about; they worry about what they don't know about," says Jon Ramsey, CTO of Dell SecureWorks, discussing threat intelligence.

• Article

  Out-of-Band Authentication Evolves

  Authentify's Peter Tapling on Mobile and Non-Banking Solutions By Information Security Media Group
  

  "People appreciate being contacted when particular transactions look risky," says Peter Tapling, President and CEO of Authentify. "Out-of-band authentication provides the opportunity to do that in real-time, at very low cost to the institutions."

• Article

  The Future of Secure Identities

  Brent Williams of Equifax on How to Create Trusted Solutions By Information Security Media Group
  

  Far too many identity solutions today rely on simple user names and passwords, says Brent Williams, CTO of Anakam Identity Services - the identity product line of Equifax. But the future of identity is bright, he says.

• Article

  4 Ways to Fight Card Fraud

  Secret Service: Payments Schemes, Card Fraud Need Attention By Tracy Kitten
  

  Skimming is a problem, but it's not the top card fraud scheme. Which incidents does the U.S. Secret Service see most often striking networks and POS systems? One agent shares his insights.

• Interview

  Dissecting a Hacktivist Attack

  Step-By-Step Breakdown of a DDOS Assault By Eric Chabrow
  

  Imperva would neither confirm nor deny it helped defend the Vatican website from a hacktivist assault last year, but the IT security provider's director of security, Rob Rachwald, explains how such an attack was constructed and defended.

• Article

  10 Tips to Fight Insider Fraud

  Organizations Often Fail to Fend Off the Obvious Risks By Tracy Kitten
  

  Most breaches have a link to an insider, but security leaders continually fail to recognize the signs. Why do organizations miss the obvious risks, and what can they do to improve their tactics?

• Article

  Radiant Logic Unveils New ID Solution

  Overview of News Releases from RSA Conference 2012 By Information Security Media Group
  

  Radiant Logic, SonicWALL and M86 were among the organizations to issue product/solution news releases at RSA Conference 2012. See the latest announcements from the show.

• Interview

  Breaches: The Top Trends

  A Snapshot of the Latest Data Breach Study by Verizon By Tom Field
  

  What are the top global breach trends and threats that organizations should be watching? Wade Baker of Verizon offers insights gleaned from a new study of his group's latest investigations.

• Article

  ACH Fraud and the Courts

  Attorneys Debate Merits of EMI, PATCO Decisions By Tracy Kitten
  

  In the PATCO Construction fraud case, attorney David Navetta says the court failed to address two key concerns: reasonable security and good faith. What's next in PATCO's ongoing legal battle?

• Article

  Combining Old, New to Nab Cybercriminals

  Renewing Call for Gov't-Business Cooperation on Cybersecurity By Eric Chabrow
  

  FBI Director Robert Mueller says the bureau will apply the methods it uses to combat terrorism along with old-fashioned gumshoe practices such as infiltration of criminal networks to battle cybercriminals.