Category Archives: Security

ISO Standards, Risk Management and Information Security Vocabularies

Posted on 16 October 2011 by Admin

There are different vocabularies for Information Security. One good reference Risk Management is the ISO Guide 73 from 2009. For Information Security, one should look ISO 27000 from 2009. Unfortunately these standards are not free. For free vocabulary, it is … Continue reading

Posted in ICT Terminology, ISO, Risk Management, Security Terminology, Security Training, Awareness and Reports | Comments Off on ISO Standards, Risk Management and Information Security Vocabularies

ITIL support material

Posted on 16 October 2011 by Admin

The following 3 books (free) are supportive material. Worth to have. An Introductory Overview of ITIL® V3 Glossary of Terms and Definitions Acronyms

Posted in ICT Leadership and Management, Security Standardization and Practises | Comments Off on ITIL support material

HMG IA Standard No.1 – Technical Risk Assessment (2009)

Posted on 16 October 2011 by Admin

There exist several Risk Assessment methods in addition to related ISO standards. This one from UK goverment contains also a worked example. It is worth to have a quick look. Document “HMG IA Standard No.1 – Technical Risk Assessment – … Continue reading

Posted in ICT Leadership and Management, Risk Management, Security Standardization and Practises | Comments Off on HMG IA Standard No.1 – Technical Risk Assessment (2009)

Security Challenges and Competitions

Posted on 16 October 2011 by Admin

There exist some security related competitions, which might be interesting for some people. Have a look at Cyber Security Challenge UK web page. One of the links are to Digital Forensics Challenge 2011 by DC3 (DoD Cyber Crime center). It … Continue reading

Posted in Cybersecurity, Security Training, Awareness and Reports | Comments Off on Security Challenges and Competitions

2011 Data Breach Investigations Report by Verizon

Posted on 14 October 2011 by Admin

DBIR is a must to view for anyone working with the information security. 2011 report is available here.

Posted in Risk Management, Security Management, Security Training, Awareness and Reports | Comments Off on 2011 Data Breach Investigations Report by Verizon

List of PCI DSS videos

Posted on 14 October 2011 by Admin

PCI DSS = Payment Card Industry Data Security Standard These videos are from 2009 or earlier. PCI Webinar Part 1 (Oracle) PCI Webinar Part 2 (Oracle) PCI Webinar Part 3 (Oracle) PCI Webinar Part 4 (Oracle) PCI Webinar Part 5 … Continue reading

Posted in Security Standardization and Practises, Security Training, Awareness and Reports | Comments Off on List of PCI DSS videos

Some open source based security offering

Posted on 14 October 2011 by Admin

Open source based applications are coming more and more popular. However, proper considerations and evaluations should be made before any serious usage. Here are some links to get an idea. Ten Open Source Security Apps Worth Considering Nessus Snort Nagios … Continue reading

Posted in Anvanced Tools, Security Products and Solutions | Comments Off on Some open source based security offering