http://www.trehb101.com Information Security : Technology : Project Management : Life Thu, 31 Mar 2011 22:23:44 +0000 http://backend.userland.com/rss092 en There is much ballyhoo on the importance of information security to an organization. There is significant focus on the threats posed by hackers, intruders, cyber-terrorists, foreign actors, viruses, Trojan horses, spyware.  etc. to the information held by a particular organization. Laws have been enacted to ensure that these actors if ... http://www.trehb101.com/index.php/2011/03/31/what-we-are-up-against/  I almost always feel like saying “D-uh!” every time I see a text heading for an article or book topic that says “Why information security” or “Why Security”.  I feel that it is almost a nonsensical question as “why do I need to breathe”. However, stepping back and looking at ... http://www.trehb101.com/index.php/2011/02/08/why-information-security-d-uh/ by Lora Bentley Score one more for Facebook's "act first, apologize later" strategy. Last month the company announced it would make user information – including phone numbers – available to application developers. But they wouldn't get access to the data until after they got express permission "through the usual permission dialogues," ... http://www.trehb101.com/index.php/2011/02/08/from-the-geek-mail-facebook-pushes-the-privacy-envelope-with-data-sharing/ Received from: Daily Edge at IT Business Edge CyberCoders, a worldwide recruiting firm, has analyzed hiring statistics from a pool of more than 12,000 CyberCoders job listings to determine the top 10 tech jobs for 2011 — focusing on which job types offer the most open positions, career growth and compensation. ... http://www.trehb101.com/index.php/2011/02/01/from-the-geek-mail-2011-top-tech-jobs/ Back in 2004, I prefaced a thesis that I wrote back then by  stating at how our global connectivity has drastically changed the way we live and do business. The technology advances, I noted, particularly the improvement in personal computing had been so profound that it has ... http://www.trehb101.com/index.php/2011/01/19/information-security-management-in-the-wild-wide-web/ Picture this. You locked yourself up in a room for two months or so with no social interaction. You’ve excommunicated your family for that time period. You even missed the Super Bowl and the birth of your first child (okay maybe a little too dramatic, I know you would not ... http://www.trehb101.com/index.php/2011/01/13/simple-math-maybe-the-difference-in-your-cert-exam-passfail-chances/ I have been schooled in the paradigm that IT is more of a necessary cost-center for the organization. The generally-accepted idea in essence is that we bought a computer for the same reason we bought the computer desk and chair. They are a necessity to do business, but they are ... http://www.trehb101.com/index.php/2011/01/11/it-from-cost-center-to-revenue-generator/ I will post a more detailed entry on this framework at a later date. A.R.M. stands for Assess-Resolve-Manage. It was a little simplified concept that I put together back in 2004 as part of my MBA thesis on Information Security for Small Businesses. The framework is actually adaptive enough that ... http://www.trehb101.com/index.php/2011/01/10/it-infosec-management-through-the-a-r-m-framework-no-arm-twisting-necessary/ Continued from: To CISSP or Not to CISSP – Part 1 Let’s look at what another non-fan of the cert thinks about the cert. In his blog entry he quoted another blog that stated: “I chose a self study route, and devoted around 2 months for the preparation. Locked myself in and ... http://www.trehb101.com/index.php/2010/12/30/to-cissp-or-not-to-cissp-%e2%80%93-part-2/ I had a discussion with a current co-worker over lunch one day on the importance of higher education. Just a week prior, two contractors working with us left without notice and somehow claimed the workplace was pretty hostile to them. Being also a contractor and working with the same group ... http://www.trehb101.com/index.php/2010/12/30/to-cissp-or-not-to-cissp-part-1/