Infosecurity Opinions

  1. An Overview of E-Mail Protection Systems

    Alexander Zatsepin of Protection Technology Research provides a guide to email security technologies and discusses the features you should look for to suit your organization's needs

  2. Comment: Internal Restructuring Can Expose Security Risks

    Marc Lee of Courion explores the hidden risks that organizations face when making internal changes and significant job cuts, highlighting the importance of access risk management to prevent them

  3. Comment: Malicious QR Codes Jeopardize Your Security

    Now that QR codes are in the mainstream, they are also fast becoming a favorite tool for attackers seeking new infection vectors. That is why education for the QR code end-user is imperative, says Tripwire’s Dwayne Melancon

  4. Comment: Why Hire a Hacker?

    Some organizations employ hackers to prevent criminals from hijacking their systems. But many are still afraid to hire a hacker and are not sure what ‘type’ of hacker they should recruit. AlienVault’s Dominique Karg looks at what kind of hacker an organization should employ and what their knowledge can offer in terms of increased security

  5. Comment: A Tiered Approach to BYOD Fulfillment

    Enterprise mobility and BYOD policies present new IT challenges and security threats for managing endpoints, safeguarding network resources and protecting sensitive data. ForeScout’s Scott Gordon says there is no one-size-fits-all answer, so a layered security model can and should be applied

  6. Comment: Employ Data-centric Security to Tackle the Insider Threat

    Watchful Software’s Charles Foley discusses how data-centric security approaches help keep sensitive information safe from security breaches

  7. Comment: Make Internal and External Threats a Boardroom Priority

    Cyber-Ark’s Udi Mokady discusses the threats facing organizations today and considers whether internal or external attacks are a greater risk to modern business

  8. Perimeter Security: In Memoriam

    Paul Simmonds submits his obituary for perimeter-based security strategies

  9. Perimeter Security: Evolved, Not Dead

    Perimeter security strategies must adapt to today’s realities, but the concept itself is not entirely obsolete, says Scott Gordon

  10. Comment: Avoid the Seven Deadly Sins of Cloud Computing

    The benefits of cloud computing services are now well established; however, uncertainty still surrounds several of the inherent risks. The ISF’s Steve Durbin examines what organizations can do to realize the benefits of the cloud, while avoiding the information security bear-traps that exist

  11. Comment: Overcoming a Year of Vulnerability

    Mark Dunleavy of Informatica takes a look back at 2012, and explores why it’s being described as a year of vulnerability. We have seen data breaches galore over the past 12 months, so he offers guidance in how to make 2013 the year of data breach prevention

  12. Comment: Contactless Payments – Retailers Must Learn to be More Secure in 2013

    Calum MacLeod of Venafi takes a closer look at near-field communications, which many retailers are planning to implement this year, and finds some potential pitfalls in their plans for contactless payments

  13. Comment: Give Security a Voice in the Boardroom

    Most organizations depend on IT, making them mortally vulnerable if security is breached. Phil Bindley of The Bunker believes that business consulting skills are the key to giving security a voice in the boardroom

  14. Comment: Audit what’s Going on in your IT Infrastructure…It’s Not Rocket Science

    Aidan Simister of NetWrix looks at what organizations need to audit, but too often don’t

  15. Information Security Certifications: Is the CISSP Just a Badge, or Is it More?

    John Colley defends the merits of the CISSP exam and warns that it's not as easy as some think

  16. Information Security Certifications: Badges of Dishonor

    Gregor Campbell questions whether those who earn their CISSP are truly capable information security professionals, just by virtue of having passed an examination

  17. Comment: DIY IT Security – The Hard and Wrong Ways

    Do-it-yourself security is typically a bad idea. Matt Harrigan of Critical Assets explains why

  18. Comment: Why Justin Bieber Is the Only Hope Left for Information Security

    Dominique Karg from AlienVault gives his opinion on how Justin Bieber can help raise IT security awareness and influence people via his millions of ‘teenie’ followers

  19. Comment: Cybersecurity Is an Issue – Now What?

    Recent cyber attacks have proven that hackers and terrorists are trolling for ways to disrupt national infrastructure. We all recognize the problem, yet no one can agree on a solution. Benga Erinle says time is running short for the US government to decide what role it will play to protect critical infrastructure

  20. Comment: Ensure You Can Trust Your Cloud Provider

    Can an organization trust an IT service provided through the cloud? ISACA’s Mike Small says the answer can be found in the old Russian maxim, often quoted by US President Ronald Reagan: “trust but verify”

Why Not Watch?

  1. Mastering AI Security With ISACA’s New AAISM Certification

  2. OT Security Ecosystem for Targeted Risk Reduction and Reporting

  3. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

  4. Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

What’s Hot on Infosecurity Magazine?