 Featured Resource |
|
|
| |
|
|
|
| FBI Reporting Form |
|
|
| |
|
|
|
| Login |
|
| Don't have an account yet? You can create one. As a registered user you have some advantages like theme manager, comments configuration and post comments with your name. |
|
| |
|
|
|
| Modules |
|
|
| |
|
|
|
| Partners |
|
|
| |
|
|
|
|
| NRF 2009 Organized Retail Crime Survey |
|
 NRF’s Organized Retail Crime survey is distributed each spring to senior loss prevention executives nationwide. This year’s survey features responses from 115 different retail companies, including department/large box, discount, drug, grocery, restaurant and specialty retailers. The 2009 Organized Retail Crime Survey is NRF's fifth annual survey.
Download the Full Report at the National Retail Federation site.
Thanks to Jason Liszkiewicz for the link.
|
|
|
|
|
|
| Create a Winning Strategy for Your Awareness Program |
|
Awareness programs are the cheapest way to prevent costly problems, but the security message can be easy to ignore. CSOs and CISOs share their strategies for spreading the good word.
By Lew McCreary
Since this magazine's inception, our CSO friends and sources have bemoaned the prevalence, throughout the enterprise, of wrong-headed views on what constitutes an excellent security mission and program. Frequently, the complaints have pointed explicitly to the upper organizational reaches—CEOs, other O's, boards of directors. But the problem of wrong-headed notions about security in general is often acknowledged to be both deep and widespread.
Some years ago, CSO interviewed famously colorful consultant Thornton May (see "Why Security Needs to Blow Its Own Horn"). May generalized about security executives: "These guys are gifted nonbranders! They couldn't sell water to a man on fire!"
We beg to differ. There is plenty that lies beyond a CSO's direct control. But we are here to tell you this: One thing CSOs do have control over, and accountability for, is the way the security program is perceived and understood within the enterprise. It all boils down to awareness, which is built through patient and relentless education and marketing—yes, marketing—about the importance of security as both the guardian and enabler of core business value.
An aggressive, well-designed and -executed security awareness program can help to transform the business culture, increase overall security program effectiveness and present the "brand" of the security function in a more positive, business-focused light. It can also help the security executive "sell up" to senior management and achieve the elusive goal of tight integration between business strategy and security practice.
|
|
Posted by johntierney on Friday, November 10 @ 08:45:26 CST (1069 reads)
(Read More... | 3261 bytes more | Score: 0) |
|
|
|
|
| Banks Face Web Security Deadline |
|
Many unprepared for guidelines on authenticating online users
Jaikumar Vijayan
For some bank IT managers, last fall's release of federal guidelines on validating the identities of online users helped catalyze ongoing efforts to adopt so-called strong authentication measures.
But a majority of U.S. banks appear unprepared to meet the Dec. 31 deadline for complying with the guidelines, several analysts said last week. They placed much of the blame for the current lack of preparedness on the fact that the guidelines aren't mandatory and don't specify what form of strong authentication banks should implement.
"Most banks haven't done much with [the guidelines] because there is still some confusion as to what needs to be done," said George Tubin, an analyst at TowerGroup in Needham, Mass.
|
|
Posted by johntierney on Wednesday, August 02 @ 10:23:51 CDT (1015 reads)
(Read More... | 2975 bytes more | Score: 2.5) |
|
|
|
|
| FFIEC releases updated information security booklet |
|
The Federal Financial Institutions Examination Council today issued revised guidance for examiners and financial institutions to use in identifying information security risks and evaluating the adequacy of controls and applicable risk management practices of financial institutions. The Information Security Booklet is one of twelve that, in total, comprise the FFIEC IT Examination Handbook. In addition to the revised Information Security Booklet, the agencies also released an Executive Summary that contains high level synopses of each of the twelve booklets and describes the handbook development and maintenance processes.
The security of financial institutions’ systems and information is essential to maintaining the privacy of customer information and safe and sound operations. The Information Security Booklet describes how an institution should protect and secure the systems and facilities that process and maintain information. The booklet calls for financial institutions and technology service providers (TSPs) to maintain effective security programs tailored to the complexity of their operations.
|
|
|
|
|
|
| AT&T Study Finds Companies Aren't Prepared For Disasters |
|
By Laurie Sullivan, TechWeb Technology News
Slide Inc. Chairman and CEO Max Levchin has been thinking a lot these days about implementing a better disaster recovery plan as his fledgling media sharing site grows into a multibillion-dollar business.
Finding the cash to invest in servers and software isn't the issue for the 34-person startup. After all, Levchin co-founded PayPal with Peter Thiel, which they sold to eBay Inc. for $1.5 billion in 2002.
|
|
|
|
|
|
|
| Become A Member |
|
|
| |
|
|
|
| Sponsors |
|
|
| |
|
|
|
| DHS Threat Level |
|
|
| |
|
|
|
| Hosting |
|
|
| |
|
|
|
|
