Entries Tagged as 'information security'
by Jay Heiser | July 5, 2011 | 1 Comment
I get a never-ending stream of questions that usually amounts to something like “What control tasks do I need to do to be sure that this SaaS service we are going to use will be adequately secure?” Unfortunately, at this point in time, SaaS providers offer relatively little support for enterprise control over anything. Assuming that the […]
Category: Applications Cloud IAM IT Governance risk management security Vendor Contracts Tags: backups, BCP/DR, Cloud, cloud security, continuity, disaster recovery, information security, malware, phishing, Trojan horse, vendor risk
by Jay Heiser | May 23, 2011 | 1 Comment
Its not surprising that as a technology approaches the top of the Hype Cycle, some of the vendors turn their Spin Cycle up to 11, which means there are going to be some disappointed buyers, especially those with high expectations for data encryption, and data recovery.
Category: Cloud IT Governance risk management security Vendor Contracts Tags: Cloud, cloud security, continuity, disaster recovery, information security, infosec, outsourcing, risk management, security, Security-Summit-NA, vendor risk
by Jay Heiser | February 9, 2010 | Comments Off
A man walks into a physician’s office and says “Doctor, it hurts when I use my computer.” The physician replies, “then don’t use your computer.” A dumb old joke or a wise observation on human nature? I receive several calls a week from people looking for the best practices on managing cloud computing security and […]
Category: Uncategorized Tags: Cloud, cloud security, information security, infosec, risk assessment, risk management
by Jay Heiser | February 8, 2010 | Comments Off
I really do not want to see some new Department of Internet Security closing examining my privates every time I take a flight on the Internet.
Category: Uncategorized Tags: congress, cyber security, cyberczar, information security, infosec, Internet security, politics, regulation, security
by Jay Heiser | January 25, 2010 | 1 Comment
As part of their corporate philosophy of introducing children to real life, several years ago, a German toymaker introduced a whimsical toy to help preschool jet-setters cope with the realities of post 9/11 travel. When my wife tracked down one of Playmobil’s more controversial toys on eBay for my Christmas present, she couldn’t have known […]
Category: Uncategorized Tags: information security, risk management