IT security functions best as a service provider to the enterprise, not as a control organization, observed Wendy Nather, research director for security at 451 Research and a former chief information security officer, at Rapid7's UNITED Security Summit being held here this week.
HP has agreed to acquire data security firm Voltage Security to beef up its cloud and big data security credentials.
To keep up with evolving attack methods, IT security teams need to stay one step ahead of cybercriminals. Unfortunately, more than half of IT security teams say they are not taking basic security steps, according to a survey of chief information security officers and security operations execs at 1,700 companies by Cisco.
U.S. banks and credit unions are lobbying Congress for legislation that would force retailers to pick up the tab for data breaches, according to a report by Infosecurity Magazine.
Using a maturity model for their information security program will help enterprises build consensus, prioritize investment and demonstrate progress, argues a new report from the Information Security Forum.
Google received close to 32,000 data requests from governments for information related to criminal investigations in the first half of 2014, up 15 percent from the second half of 2013 and 150 percent from 2009 when the search giant first began publishing the data.
Spending on IT security is forecast by Gartner to increase 8 percent year-over-year in 2014, reaching $71 billion, and another 8.2 percent year-over-year in 2015 to total $77 billion.
Certainly, the first line of defense is the company, its systems, and its employees. With every successful hack comes costly fixes--from diagnostics and business interruption losses to liability exposures to third parties. For those costs--now seemingly unavoidable--there are insurance policies of almost every sort, scope, and nature.
Read that headline again, because it's meant to be good news. Governance strategies advise businesses to focus on protecting information and helping people.
Target's new chief information security officer Brad Maiorino takes the reins of the retailer's IT security program at a time of growing consumer anger at retailers for data breaches.