Stories about: ISM

Cisco this week rolled out two routers designed to allow service providers to migrate to IPv6 and more capably support video, mobility and cloud offerings.

President Obama's late-night announcement of the death of Osama bin Laden by Navy SEALs triggered a massive amount of real-time comments, searches, social networking and video streaming. The traffic explosion bogged down news pages and for a while even crashed CNN's mobile news site.

The recent military and U.S. State Department Wikileaks fiasco epitomizes a key challenge to data security and privacy today: the authorized insider threat.

Hospitals and physicians have four years to deploy comprehensive electronic health records (EHR) systems and the technology needed to support them if they hope to snag some of the billions of dollars the federal government has earmarked to reimburse them for the work. That's why they're already scrambling to figure out how to set up what are likely to be costly and complex systems.

Windows 7 is right around the corner. The official release date is Oct. 22, but some PC makers will ship it before then.

In response to pressures from economic crisis and the Gershon Report, organisations with outsourced environments are tackling the need to cut costs quickly. Here’s how they’re doing it. . .

Have you noticed that many of the firms suffering high profile, serious, and expensive information security breaches have nonetheless been 'compliant' with certain laws, regulations, or standards? Consider the case of credit card processor Heartland Payment Systems, which recently suffered the unauthorized disclosure of over 100 million credit card and debit card transactions. The firm handles the transactions of over 175,000 merchants. Hundreds of banks have already had to reissue cards as a result of the breach. Note that Heartland was, at the time, certified as fully Payment Card Industry (PCI) compliant. Many other organizations that fall under various Federal, state, and industry regulations are continually experiencing breaches as well.

An Information Security Policy is the cornerstone of an Information Security Program. It should reflect the organization's objectives for security and the agreed upon management strategy for securing information.

Advanced mobile devices--iPhone, BlackBerry and other handhelds--have created a growing wireless mobility environment for business, personal communication and entertainment. However, their growing use has also led to a faster increase in the depth and breadth of mobile security threats. Using a mobile device to access corporate information systems can potentially create a hole to corporate security if not protected and used properly. In a recent report from CSI, the theft or loss of corporate proprietary and customer information by mobile devices is nearly half of all sources. Data breaches are real to nearly every organization of virtually any size, from the big multinational corporation to the small to medium business, including device loss, theft, misuse, and unauthorized access to corporate network and data disclosure.

In the early days of computers, many people were suspicious of their ability to replace human beings performing complex tasks. The first business software applications were mostly in the domain of finance and accounting. The numbers from paper statements and receipts were entered into the computer, which would perform calculations and create reports. Computers were audited using sampling techniques. An auditor would collect the original paper statements and receipts, manually perform the calculations used to create each report, and compare the results of the manual calculation with those generated by the computer. In the early days, accountants would often find programming errors, and these were computer audit findings.