Definition of Security Management
the set of functions (a) that protects telecommunications networks and systems from unauthorized access by persons, acts, or influences and (b) that includes many subfunctions, such as creating, deleting, and controlling security services and mechanisms; distributing security-relevant information; reporting security-relevant events; controlling the distribution of cryptographic keying material; and authorizing subscriber access, rights, and privileges.
|
|
Security Management
|
|
The Components of a Strong Security Stance
Organizations need to create a strong security stance, which is the overall security level of the network, to ensure the network is not exposed to undue risk. Ultimately, a strong security stance does not equate to shutting the network down, rather it is about appropriately controlling the use of the network, based on the user's relationship to the business, and minimizing any threats.
Read the Article
|
No Accountability in Information Security
If an accountant loses track of a million dollars, he gets in trouble or loses his job. If a school bus driver gets a speeding ticket, he gets in trouble or loses his job. We could go on and on with examples. So why is it that when a fortune 500 company is brought to its knees from a 6 month old worm that had a patch available 12 months ago following a 16 month old vulnerability, no one gets in trouble?
Read the Article
|
Is Your Security Event Management Tool Credible?
Security Event Management (SEM) vendors often talk about scalability when addressing the degree to which their products can accommodate growth in a customer's increasing network and/or security requirements. When talking about scalability in this context, one must also discuss SEM credibility, specifically, the reproducibility of the results. For a product to be truly scalable, the specific SEM results must remain unchanged as the product "scales". While this sounds obvious, it may not always happen. This article explores the concepts of scalability and credibility, and why these are factors that need to be considered evaluating an SEM product.
Read the Article
|
End User Device Security
Desktop PCs, laptops, and Personal Digital Assistants (PDAs) are everywhere and usually connect to sites outside your security perimeter. In addition, more than 50% of your critical business information is likely stored on these systems (Sussman, 2004); they are also often the home for worms, viruses, and other malicious code. This makes end-user devices perfect portals for attacks against your network. In this article, we explore many of the potential threats, vulnerabilities, and safeguards surrounding end-user computing.
Read the Article
|
A Proactive Approach to IT Security Management
This paper shows how proactive management techniques can be applied in the area of information security in order to achieve a scalable and flexible process, capable of responding to both short-term and strategic requirements. Emphasis is given to simple, practical techniques and examples of how these techniques can be applied are provided.
Read the Article
|
Baseline Analysis of Security Data
In this paper we suggest a different approach for using data mining technology in the intrusion detection area. We claim that the best positioning for a data mining technology within an intrusion detection system is not as a detection engine, but rather as an analysis layer that will filter out the false positives. The ability of data mining technology to build behavioral models representing "normal" behavior of data is most suitable to model the data generated by the intrusion detection engines.
Read the Article
|
Controlling Internal Abuse Through The Process Of Security
For five years, the Computer Security Institute (CSI) and the FBI have conducted an annual survey of the types of attacks companies experience. Invariably, dishonest and disgruntled employees top the list at about 80% as the most likely source of attack. Further, these insider attacks typically fall into the most expensive categories.
Read the Article
|
|
|
Page: 1 2 3 4 5 6 7
Members currently browsing this category:
|
|
