Posted in Application, CISSP, COBIT, Defense in Depth, ISACA, Information Security Governance, Opinion, Policies, Relation Competence, Risk on Mar 21st, 2009
I come bearing no answers, only questions. This being the SecurityMonks website, I could not allow the article, “The High Priests of IT — And the Heretics” to pass without comment. No heretics or high priests here. Only a simple security monk. The author, Cory Doctorow, makes his argument well. [...]
Read Full Post »
There are a few topics I have meant to do a post on for awhile. Sometimes having too much interest and information on a topic can be a bad thing. Wanting to pull various postings and articles along with implementation instructions can be a bit time consuming. Plus, in order to demonstrate [...]
Read Full Post »
“Change is the constant, the signal for rebirth, the egg of the phoenix” — Christina Baldwin
Many of the security issues we are beginning to see with Web applications are issues that we have seen in some form with traditional client/server applications. Unlike the Phoenix, the Web application security issues are not rising from the [...]
Read Full Post »
