The market for managed security services is predicted to more than double between 2006 and 2010 according to a new report by Infonetics Research. This growth will be driven by increasing global demand from organizations of all sizes due to the proliferation of security threats of all types, the complexity of current security solutions, and the desire of many service providers to add revenue and improve margins.
By Peter Wood
Over the past ten years, I have taken part in a large number of penetration tests, from both inside and outside organisations. Over this period several important themes have emerged, which, whilst apparently unrelated, contribute to the failure of organisations to adequately protect their information assets. My ‘top five network nightmares’ are a distillation of these ethical hacking experiences of the past ten years and represent my view of the most likely route an attacker would take to compromise your network security.
Two Russian hackers from the Russian city of Togliatti on the Volga River are alleged to have stolen over $500,000 over a period of two years from bank accounts in Turkey. It is thought to be one of the longest running scams of its type anywhere in the world, with a total of 265 registered money transfers totaling $508,000 between February 2005 and April 2007.
By Alan Calder
Within most organizations, employees fall into two distinct tribes. On the one side there are the information technologists; on the other, the business users and managers.
Each tribe views the other with considerable distrust and exasperation. Technologists cannot understand the complacency with which business users view the internal and external threats to the organization. Meanwhile, the business users feel the technologists are intent on obstructing them in their work.
In the previous issue we looked at some of the problems associated with preserving digital information and the concerns that we are entering a “digital dark age”.
But why is this of particular concern to CISOs? Well, maintaining security event log data is becoming increasingly difficult, with legislation requiring more and more companies to record this data for prolonged periods of time.
A recent report has highlighted the importance of recruiting specialist IT security staff and developing effective security policies. The Benchmark of IT Strategy report, based upon responses from over 200 user organizations, is published on an annual basis by the UK’s National Computing Centre (NCC).
Security Management News is published by Exaprotect.
© Exaprotect. All Rights Reserved | Disclaimer | Privacy | Terms of Use
