Welcome to Collaborative Strategy Guild Where insights are transformed into actions at the intersection of collaboration, information management, security, and business strategy.
|
As the second law of thermodynamics tells us, all things trend toward chaos and this is no less true with a virtual environment. Sprawl can have a real security impact, and it takes discipline and planning to control sprawl — discipline and planning that won’t occur without someone from the security team actively monitoring the problem and formulating strategies for how to address the issue.
VVirtualization has been one of the most rapidly and widely adopted technologies in recent memory. It’s huge, and it’s here to stay.
And as security professionals know, setting up a virtual environment securely isn’t easy. Significant effort goes into tasks like evaluating off-premise service providers, ensuring regulatory… Continue reading: Post Virtualization Security
[Excerpted from "Security Via HIPAA Compliance," a new report By Diana Kelley and Ed Moyle, posted on Dark Reading's Compliance Tech Center.]
Healthcare compliance requirements can be a driver to improve your organization’s overall security. Here’s how:
If your security organization is in the healthcare space, you inevitably are wrestling with the Healthcare Information Portability and Accountability Act (HIPAA). HIPAA compliance is one of the biggest challenges healthcare IT organizations face — but it also could be an opportunity to advance your security agenda.
For security professionals to leverage compliance investment and activities for broader benefit, they must understand what’s driving current compliance investment.
First, it bears saying that the… Continue reading: Using HIPAA To Advance Your Security Initiative
So I have a few humble thoughts about free security tools over on the Savvis Blog that you as a cloud customer can use to fill in gaps that sometimes occur during a transition to a cloud environment. I won’t reproduce the content here, but wanted to pass along the link.
You can check it out on the Savvis blog at this link. It’s entitled, “5 free security tools every cloud user should know about“.
Image source: savvis.com
This month for eCommerce Times, I outline a few strategies for planning ahead of time for security resource dropoff during the holidays:
The end of the year is one of the riskiest times for information security. Attack levels rise right at the time IT staff attendance typically takes a dip. Adjusting to this critical period isn’t easy, but collecting the right information now can help you take a better course of action when this season rolls around next year.
If it sounds interesting to you, check out the full article here.
E-Commerce Times: An InfoSec Holiday Survival Guide
Just FYI that portions of this blog will be resyndicated over at InfoSec Island. Generally speaking, if you’re not a reader of InfoSec Island, I highly recommend checking it out. Not just for this blog (which you can continue to still read over here), but for excellent content from all around the security space.
That is to say… not every post will be picked up. For example, administrative stuff and miscellaneous commentary (as an example, this post) won’t be picked up. However, content-heavy posts (what we usually file under the topic of “analysis”) will be. If you’re interested… Continue reading: Syndication update: Infosec Island
|
|
