GovInfoSecurity.com Articles RSS Syndication

Keeping IT Secure During a Budget Crisis

Adopting a Trusted-Internet-Connection Model as a Money Saver
California CISO Mark Weatherford looks to spend precious IT security dollars more efficiently and with more smarts as the nation's largest state tries to stay financially afloat.

DoD Units Fail to Sanitize Hard Drives Before Shipment

IG Report: Social Security numbers, other data exposed
Several military units failed to adequately sanitize hard drives of data, including Social Security numbers of military personnel, before shipping the IT equipment to other organizations, in violation of Department of Defense rules, the DoD inspector general said in a report.

Senate Kills 'Czar' Testimony Amendment

Democratic Whip Objection Helps Sink Measure
The Senate killed an amendment from a Susan Collins, R.-Maine, to compel President Obama's cybersecurity coordinator and other so-called 'czars' to testify before Congress or face losing funds for their offices.

Cyber Defense: Size Doesn't Matter

Agency Portals Seen as Potential Weak Links to Fed IT Assets
Regardless of their size or mission, all federal agencies must provide proper cyber defenses to protect government IT assets regardless of where they're situated, says NRC's chief information security officer.

PCI Evolution Tied to Emerging Technologies

Encryption, Tokenization Top of Mind with Merchants, Processors
Emerging technologies are the hottest topics of discussion within the PCI Security Standards Council community meeting in Las Vegas this week.

The question, says David Taylor, founder of the PCI Knowledge Base, a PCI research firm, is 'How will PCI's security standards council embrace end-to-end encryption, tokenization and other emerging technologies?'

Compelling Cybersecurity "Czar" to Testify

Measure: Non-Cooperation with Congress Means No Funding
Republican senators introduced an amendment to an appropriations bill to compel President Obama's cybersecurity coordinator and other so-called 'czars' to testify before Congress or face losing funds for their offices.

GIAC Certifications in High Demand

Incident Handler Credential is Top-Rated Among Employers
When Foote Partners, the Florida-based management consultancy, released its 2009 IT Skills Trends Report Update, three of the top 10 certifications were Global Information Assurance Certification (GIAC) offerings by the SANS Institute, specializing in computer security training and professional certification through GIAC.

Panel OKs Fed InfoSec Workforce Review

Subcommittee Passes Cybersecurity R&D Amendments Act
Legislation orders White House to assess existing IT security skills within government, the pool of available cybersecurity talent and any barriers to the recruitment of cybersecurity professionals.

Net Neutrality's Security Implications Mulled

FCC Moves to Codify Net Neutrality
What's the information security, privacy and risk management repercussions of net neutrality? Perhaps, something significant; most likely, not much at all.

The Future of PCI: 4 Questions to Answer

As PCI Conference Begins, Security Debate Heats up Over Key Issues

It's been an interesting year for the Payment Card Industry Data Security Standard.

In the middle of it all is a debate among payment card companies, banking institutions, merchants, industry groups and even congressional leaders, questioning the merit of the standard and all hinting at the same open question: What is the future of PCI?