PCI-DSS 3.2 is Coming: Are You Ready?
Compliance Standards have never been so often changing in past as they are today and the major changes in them with regards to information security. This makes...
Management, compliance & auditing
Legal issues of new and emerging technologies
Since the invention of the agriculture in the Fertile Crescent, the humanity has witnessed continuous technological developments. Such developments affect the...
SAP Afaria Security: Attacking Mobile Device Management (MDM) Solution
It is known that the BYOD trend is changing the way enterprises are managed, delivered, and, most importantly, secured. While BYOD has its benefits, such as...
Windows logging for PCI-DSS
Various organizations strive to be PCI-DSS compliant, and they often have a hard time deciding what to log from Windows Systems so as to retain all the essential...
Why ITIL, COBIT and Other Non-Infosec Based Frameworks Are Infosec’s Best Friends
As a current or aspiring security professional, you will know of a range of information security frameworks and enablers. These might include standards, e.g....
Breaking Bad Behavior: Why Non-SIEM Behavioral Analysis May Not Be All It’s Cracked Up to Be
Behavioral Analysis is becoming a huge buzzword in the IT and Information Security industries. With the idea that you can automatically determine whether or...
Is Safe Harbor 2.0 Another Tug of War between Privacy and Security?
In Schrems v. Data Protection Commissioner, the Court of Justice of the European Union (also known as CJEU or ECJ) held that the application of the U.S.-EU...
What Is SIEM?
A SIEM (security information and event management) is a software solution that normalizes, filters, correlates, assembles, and centrally manages other operational...
The Cybersecurity Information Sharing Act of 2015 (CISA): Is It the Right Answer?
In attempt to further cybersecurity efforts for the nation, a brand new cybersecurity bill, the S. 754, has just been discussed: the Cybersecurity Information...
Tips for Being a Pragmatic CSO
The cybersecurity landscape is ever-changing, with new threats and technologies appearing every single day. There are more data breaches than ever, more compliance...