The saying "Penny-wise, pound-foolish" is relevant when we talk to those friendly, knowledgeable finance people about ongoing employee screening due to the dreaded insider threat and the costs associated with it - which leads to us pulling out our hair in utter frustration. This rant is about that.
A Microsoft zero-day vulnerability has not been fixed by the technology giant despite having been reported months ago, according to a security researcher. To protect users, a micropatching service, 0patch, has issued unofficial, free patches.
In her latest book, "Rhetoric of InSecurity: The Language of Danger, Fear and Safety in National and International Contexts," academic Victoria Baines questions the imagery and rhetoric we use to communicate safety and security issues, and details their unwelcome impact on the workforce.
Forrester's Sandy Carielli and Jeff Pollard discuss their latest research, Predictions 2022: Cybersecurity, Risk and Privacy, which highlights the need for gaps in third-party relationships, collaboration and trust to be addressed.
Speaking about his role as managing director, business information security, at financial giant State Street, TJ Hart says, "I wake up nervous, and I go to bed nervous." But he channels that energy into trying to better understand the threat landscape and use that data to make better business risk decisions.
SASE adoption is being driven by numerous factors, including the opportunity to address the challenges with unmanaged applications and devices, providing greater visibility into various tasks, and ensuring consolidation of investments in the networking infrastructure to bring down the administrative cost, according to...
This Aite-Novarica Group white paper, commissioned by Radiant Logic, examines the
toll enterprises pay due to identity sprawl and introduces Radiant Logic’s Identity Data
Fabric approach to support identity unification and simplification.
Key takeaways from this research include:
Financial services companies...
From the IT perspective, it’s harder than ever to manage the unending requests from the business side. Moving to the cloud, adding new applications, integrating new partners, securing new devices—business needs keep piling up, and it all needs to be done yesterday. Before you know it, IT has become the bottleneck...
When a large oil company moved to the US from Canada, they also embarked on an IAM modernization
and integration project. Because their business model included future M&As, the goal was to create a
foundation to support integration of business entities with disparate identity infrastructures so that they
could...
Following the holiday recess, U.S. lawmakers are picking up several legislative priorities starting Monday, including progress on the annual defense spending bill, which contains amendments that would require incident reporting for critical infrastructure providers, among other measures.
Michael Lines is working with Information Security Media Group to promote awareness of the need for cyber risk management, and as a part of that initiative, the CyberEdBoard will post draft chapters from his upcoming book, "Heuristic Risk Management: Be Aware, Get Prepared, Defend Yourself."
The annual IRISSCOM cybercrime conference in Dublin aims to give attendees "an overview of the current cyberthreats facing businesses in Ireland and throughout the world" and how to best defend themselves, organizers say. Here are visual highlights from the conference's latest edition.
The problem with decentralized access management, says Manuel Garat, head of IAM at digital travel company Booking.com, is that while you might know who or what needs access to your network, applications and data, you "don't always know who shouldn't have access."
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing careersinfosecurity.com, you agree to our use of cookies.
