Information Security Blog

HomeInformation Security Blog

eGovernment Cloud Security – Is FedRAMP The Answer?

eGovernment Cloud Security – Is FedRAMP The Answer?

In December of 2011 FedRAMP was introduced to provide a cost-effective, risk-based approach for the adoption and use of cloud services in the federal government.  The idea was to define a set of standardized security requirements for the authorization and ongoing cyber security of cloud services based on different system impact levels (risks) and a “certification program” supported by a large team of independent, third-party assessment firms.  Theoretically, at that point, the security ...

Continue Reading →

Categories: Risky Business, Thoughts

Tags: , ,

2011′s Top 10 Consumer Scams

2011′s Top 10 Consumer Scams

The Better Business Bureau released an Infographic of the top consumer scams of 2011.

You may be asking why I am posting an Infographic of consumer scams.  Many of these scams hit our business inboxes, social networks, or impact our business travels.  For that reason, I recommend giving the graphic a good look.

You will see that social engineering takes many shapes.  It is not limited to just emails.  It can happen through websites, phone calls and many other ...

Continue Reading →

Categories: Simplified

Tags: ,

Top 3 Emerging IT Security Challenges for State Government

Top 3 Emerging IT Security Challenges for State Government

Cybersecurity is a top concern for every state CIO and chief information security officer (CISO). While every state is working hard to secure its systems and networks, the relentless onslaught of diverse threats continues to expose vulnerabilities. Recent “hacktivism” by the online group Anonymous illustrate the extreme susceptibility of state agencies and others running critical services on exposed servers.

Deep budget cuts are not making it any easier for states to secure the vast amounts of Continue Reading →

Categories: Risky Business

Tags: , ,

Ethical Hacker Roundup – eGov Efficiency

Ethical Hacker Roundup – eGov Efficiency

These Government links are part of a weekly series, Ethical Hacker Roundup, featuring the information security and cyber security related articles that we’ve read over and thought worth sharing.

These articles have were emailed to us, shared on Twitter @pivotpointsecGoogle Plus and read in RSS subscriptions this week.

line-break

Phishing As The Attorney General

As folks get smarter and stop responding to emails about Nigerian Prince’s needing ...

Continue Reading →

Categories: Ethical Hacker Roundup

Tags: , , ,

Healthcare Information Security – A Perfect Storm?

Healthcare Information Security – A Perfect Storm?

Recently, I had the opportunity to read “Eye of the Storm – Key findings from the 2012 Global State of Information Security Survey” published by PWC (Pricewaterhouse Coopers). While the study is vendor/technology/industry/geography neutral – it really crystallized the angst that most of our healthcare clients are experiencing. Consider some of the Key Findings detailed in their survey and their applicability to healthcare:
healthcare-information-security

Client requirements and compliance are the ...

Continue Reading →

Categories: Risky Business, Thoughts

Tags: , , ,

Page 5 of 39 «...34567...»