Security & Risk
Forrester Analysts
Recent Posts
Bringing big data to fraud management
Social network, geolocation, IAM logs, text analytics and link analytics join the arsenal
A common theme during the recent SAS and FICO user conferences was how to use Big Data to make fraud decisions faster, more accurately and without impacting the customers in any negative way. Big Data is basically about 3Vs: Volume,...
May 9, 2013 10:40 AM Read Full Post
Samsung Galaxy S4: Why it is important for fraud management professionals
Near Field Communication in a mainstream phone can revolutionise fraud management
Well, we just saw Samsung launch its latest ubergizmo with tons of interesting features, like pause video playback at the blink of the eye. However, there is an important hardware feature of the Samsung Galaxy S4 to note here: finally...
April 29, 2013 3:29 PM Read Full Post
Collaborate with your non-security peers to see how objectives intersect
Hint: mobile context for mobile authentication
“Enterprise rights management? What does that even mean?! You’re using security speak!” exclaimed my colleague TJ Keitt. TJ sits on a research team serving CIOs, and covers collaboration software. We were having a discussion around collaboration software and data security...
April 29, 2013 1:54 PM Read Full Post
Observations on the 2013 Verizon Data Breach Investigations Report
we are all targets
I was very excited to finally get a copy of the much-anticipated 2013 Verizon Data Breach Investigations Report (DBIR.) I have found the report to be valuable year after year. This is the 6th iteration and this year’s report includes...
April 25, 2013 6:51 AM Read Full Post
How do S&R pros keep up with disruption?
A focus on business alignment can minimise the need to play catch-up
When I talk to security (S&R) leaders, they always tell me that in an ideal world, they would have enough advanced warning of impending business and technology disruptions in order to understand the security, privacy and overall risk implications and...
April 19, 2013 8:05 AM Read Full Post
Two-step verification will end consensual impersonation
Learning from the school of hard knocks
I recently advocated killing your password policies and applying some other techniques instead to make existing use of passwords more effective (including my hobby horse: take the user-experience sting out of rotating ordinary static passwords by pushing them out to...
April 15, 2013 2:47 PM Read Full Post
Avoid the social media binary
It can't be all or nothing with employees, Facebook and Twitter
Many organisations today get caught up in what I call the “social media binary,” where there are only two options to social media control: 1) Allow unrestricted access to social networks, and potentially expose the company to myriad security, regulatory,...
April 3, 2013 3:05 PM Read Full Post
RSA 2013: The age of security commercialism
Lots of noise, too few surprises and too little differentiation
Walking on the RSA 2013 show floor, it was a chaotic, noisy, and energetic place, pulsing with excitement. The industry has reasons to celebrate; the security space is white hot, with more VC money pouring into the space than ever...
March 8, 2013 12:42 PM Read Full Post
Bit9's operational oversight is probably your operational reality
Be pragmatic, You can't protect everything
You are now no doubt aware that Boston-based security firm Bit9 suffered an alarming compromise, which resulted in attackers gaining access to code-signing certificates that were then used to sign malicious software. See Brian Kreb’s article for more details. (Symantec...
February 14, 2013 12:24 PM Read Full Post
A 'BYO' too far?
How many of us truly enforce the contractual requirements that prohibit sub-contracting for service providers? Do we even include such terms in employee contacts?
Undoubtedly, most of you will have seen the amazing story about the developer who secretly outsourced his own role to China, investing 20 percent of his annual salary to free up almost all his work time. The rouse came to light...
January 21, 2013 5:00 PM Read Full Post
[ 1 ] [ 2 ] [ 3 ] [ 4 ] [ 5 ] [ 6 ] [ 7 ] [ 8 ] [ 9 ] [ 10 ] ... [ 19 ] [ continued on page 2 >> ]
Powered by the Pagination plugin for Movable Type

Subscribe to this blog