Security in the Business News

01/29/2010

Secure Value by Understanding that Cybercrime Increasing Faster than Company Defenses

How are your company's defenses? Don't forget to tend to them as your run and grow your business!

Tonight I read the 2010 CyberSecurity Watch Survey.  "The 2010 CSO CyberSecurity Watch Survey was sponsored by Deloitte and conducted in 2009 in collaboration with CSO Magazine, the U.S. Secret Service, and the CERT Coordination Center at Carnegie Mellon."

The report hit close to home because in the past 30 days we have:

  • begun projects with several firms that have had web sites targeted and attacked;
  • assisted a firm manage an longstanding employee out of the organization because he had "quit and stayed", taking an offer from a competitor while continuing to "work", explore available confidential information and download it, and;
  • developed an incident handling and forensic process for a large Software as a Service (SaaS).

The report is a quick read (16 pages).  I suggest you dive into it and then use it to talk to your HR and IT management to make sure you are properly protected.

Related articles by Zemanta
Reblog this post [with Zemanta]

Posted at 12:02 AM in Risk Management, Secure Value, Security in the Business News, Small Business, Threats | | Comments (0) | TrackBack (0)

|

07/18/2009

Why don't small businesses Secure Value?

We don't build buildings without locks but we do build intellectual, informational and digital assets without locks, why?

I asked a number of people last week:

Regarding Twitter's security breach announced today as an example, how should startups consider information security in their planning?

I got a mix of responses that boiled down to:

  • Information security is too complicated, too technical for startups to consider.

  • Start ups don't have the capital to invest properly in information security.

In the context of the Twitter story .... one of the founders, first name Jack, had as his username / password combination to use Google apps Jack with the password, password .... the responses do not make sense. 

Twitter has brilliant innovative people working for them who fundamentally understand information technology.  The information security control (read: lock) that wasn't in place would cost $0 as their bad week could have been prevented by a hard to guess user name and a strong password.  In the end it is negligence and a lack of awareness about how important this stuff is (or perhaps awareness that bad things do happen).  How many other startups and growth companies enter the marketplace without proper protections?

Posted at 03:44 PM in Secure Web Development, Security in the Business News, Small Business | | Comments (2) | TrackBack (0)

|

07/15/2009

Will Twitter Secure Value NOW?

Secure Value by being intentional about security issues from start up on.

Article on TechCrunch disclosing breach of Social Media hot tool Twitter by releasing hacked documents.

Article from TechCrunch discussing start up Twitter's poor security culture as shown by a breach of their business systems. 

UPDATE:

Some words from the old guard media at the New York Times on the issue.

Posted at 11:32 PM in Secure Value, Security in the Business News, Social Media | | Comments (0) | TrackBack (0)

|

My Photo

About

TypePad Profile

Get updates on my activity. Follow me on my Profile.

Twitter Updates

    follow me on Twitter
    Subscribe to this blog's feed
    Blog powered by TypePad
    Creative Commons Attribution-ShareAlike 3.0 Unported