Recently I was asked if I could provide a few pointers to help in developing a risk assessment process for an organization. I thought I would share my response. First, I would like to draw your attention to the mind map image over to the left of this text. The mind map [...]
Read Full Post »
Posted in Apache, Leopard, Links, Mac OS X, ModSecurity, MySQL, NIST, OpenSSL, PHP, Request Tracker on Aug 3rd, 2008
Awhile back, I posted “Request Tracker Installation (Part 1 of 2),” which provided information and additional links concerning Request Tracker (RT). As a reminder, RT is an enterprise-grade ticketing system which allows for the checking of the status of various tasks including when the tasks were requested, who requested the tasks and why, [...]
Read Full Post »
Revolution
On this 4th of July, I find myself wondering if a revolution is about to occur in the information security arena. Is the policy based compliance model going to be overthrown by the risk-based protection model? What are the ramifications? Are most CIOs aware or even ready for such change?
Technological Upheaval
Ground [...]
Read Full Post »