Blog Elements

Half Sized Blog Element (Single Author Style)

Half Sized Blog Element (Multi Author Style)

The 22nd USENIX Security Symposium in Washington, D.C. on August 14 thru 16

2013-07-08/0 Comments/in Conference/by admin

The 22nd USENIX Security Symposium will be held in Washington, D.C. on August 14–16, 2013. Speaking will be White House Sr. Director for Cybersecurity, the former Chief Technologist at U.S. Federal Trade Commission and the Google Chrome Security Team.

Doing More Than Paying Risk Management Lip Service

2013-07-08/0 Comments/in General Security/by fdesir

The 22nd USENIX Security Symposium in Washington, D.C. on August 14 thru 16

2013-07-08/0 Comments/in Conference/by admin

Doing More Than Paying Risk Management Lip Service

2013-07-08/0 Comments/in General Security/by fdesir

Full Sized Blog Element (Big Preview Pic)

The 22nd USENIX Security Symposium in Washington, D.C. on August 14 thru 16

2013-07-08/0 Comments/in Conference/by admin

The Symposium will span three days, with a technical program including:

• Wednesday Keynote Address by Edward W. Felten, Director, Center for Information Technology Policy, and Professor of Computer Science and Public Affairs, Princeton University; former Chief Technologist, U.S. Federal Trade Commission: “Dr. Felten Goes To Washington: Lessons from 18 Months in Government”

• Thursday Keynote Address by Andy Ozment, Senior Director for Cybersecurity, White House: “The White House’s Priorities for Cybersecurity”

• Thursday Invited Talk by Jim Adler, former VP Data Systems & Chief Privacy Officer, Intelius; currently VP Products at big data (stealth) startup: “Confessions of a “recovering” Data Broker: Responsible Innovation in the Age of Big Data, Big Brother, and the Coming Skynet Terminators.

• Friday Invited Talk by Chris Evans, Google Chrome Security Team: Learn about their different approach and structure to traditional security teams. They will freely share details in the hope that progressive organizations will be interested in adopting some of the same tactics.

Read more on Examiner.com’s website here.

Doing More Than Paying Risk Management Lip Service

2013-07-08/0 Comments/in General Security/by fdesir

A posting from Dark Reading in there risk management section: While the majority of CISOs may profess a commitment to managing security based on risk management principles, the truth about how they execute on those principles may be a lot more imperfect. The unfortunate reality, say experts, is that many organizations simply pay risk management lip service, but aren’t really making security decisions based on risk management metrics.
“It’s easy to commit to concepts, but execution depends on something more concrete,” says Tim Erlin, director of IT risk and security strategy for Tripwire. “While the idea of managing information security in alignment with business risks is attractive, there’s not a lot of guidance or best practice information to inform execution.”

To read more click here: