Stories about: SEC

The U.S. government has taken several steps to combat identity theft during the past two years, including increased prosecutions of criminals and decreased use of Social Security numbers to identify constituents, according to a report released Tuesday.

Ever wonder what that cop is doing in his cruiser that's parked behind your car with lights flashing -- while your heart is pounding and you're searching for your license and registration?

I'm a CISO who has worked in the US financial services industry both as a regulator and for a large services company. In this column I'm going to let you in on one of the biggest, dirtiest secrets in the industry: The companies that get the least amount of scrutiny from financial regulators actually present some of the greatest risks for systemic financial market manipulation and fraud. I'm talking about financial news and brokerage service companies.

Becoming the chief information security officer (CISO) of a corporation makes you a strategic IT advisor to business management, the chief information officer, and the rest of the information technology staff. Just as no company is the same as another, the job of CISO -- or alternately, "chief security officer," which might include physical security as well -- isn't either. The four security professionals who share their priorities with us make it clear there's nothing cookie-cutter about the top IT security job.

We all face it - the daily barrage of spam, now infested with zero-day malware attacks, not to mention the risks of malicious insiders, infected laptops coming and going behind our deep packet-inspecting firewalls and intrusion-prevention systems. Some even have to worry about how to prove steps of due care and due diligence towards a growing roster of regulatory compliance pressures.

Wireless LANs have grown in the workplace -- in size, number of installations and technology maturity -- to the point that many IT managers now expect to expand the uses of their networks in a new round of investments within the next year or two.

Sure, you're thinking, records retention can be deadly. Deadly dull

CISOs at midsize businesses face many of the same problems as CISOs at larger companies, but with a lot fewer resources. What they've learned can help any CISO get by on less.

Regulatory requirements like Sarbanes-Oxley, BASEL II and HIPAA were designed to improve governance and security within the enterprise, but at some companies they appear to be doing just the opposite.

Keeping data secure, tracking who uses it and managing it in a way that maintains backup windows and keeps information available to customers -- especially after an interruption in service or a disaster -- are among the top issues for IT executives, according to users who took part in a panel discussion yesterday at Storage Networking World.

The 'paper trail' no longer consists of paper. More than 90 percent of all business documents are now created digitally, and computer forensic techniques allow recovery of evidence invisible to most computer users. So if you think your organization is prepared to face a lawsuit, you may want to think again