Information about developments at the Monastery
Posted in COBIT, ISACA, Mind Maps, NIST, Risk, Security Catalyst, Web Application on Sep 22nd, 2008
Recently I was asked if I could provide a few pointers to help in developing a risk assessment process for an organization. I thought I would share my response. First, I would like to draw your attention to the mind map image over to the left of this text. The mind map [...]
Posted in Apache, Leopard, Links, Mac OS X, ModSecurity, MySQL, NIST, OpenSSL, PHP, Request Tracker on Aug 3rd, 2008
Awhile back, I posted “Request Tracker Installation (Part 1 of 2),” which provided information and additional links concerning Request Tracker (RT). As a reminder, RT is an enterprise-grade ticketing system which allows for the checking of the status of various tasks including when the tasks were requested, who requested the tasks and why, [...]
Posted in COBIT, CrossTalk, DODI 8500, ISACA, ISO 17799, ITIL, Information Security Governance, NIST on Jul 4th, 2008
Revolution
On this 4th of July, I find myself wondering if a revolution is about to occur in the information security arena. Is the policy based compliance model going to be overthrown by the risk-based protection model? What are the ramifications? Are most CIOs aware or even ready for such change?
Technological Upheaval
Ground [...]
 |
 |
 |