Stories about: NetIQ

Becoming the chief information security officer (CISO) of a corporation makes you a strategic IT advisor to business management, the chief information officer, and the rest of the information technology staff. Just as no company is the same as another, the job of CISO -- or alternately, "chief security officer," which might include physical security as well -- isn't either. The four security professionals who share their priorities with us make it clear there's nothing cookie-cutter about the top IT security job.

Idera, a vendor of tools for managing and protecting SQL Server installations, Tuesday announced server compliance and security software that lets organizations identify users with inappropriate access rights and permissions.

The typical computer network isn't like a house with windows, doors and locks. It's more like a gauze tent encircled by a band of drunk teenagers with lit matches".

Vulnerability management starts with tools that assess security in network gear and applications, but it's a road that forks, one way leading to host- or agent-based scanners and the other to network-based or agentless scanners.

Keeping the network safe these days means fixing it before you know what's going to attack it or where. Worms wriggle faster, hackers are quicker, so out-manoeuvring mal-intents means knowing what they're up to before they do it, writes Jaikumar Vijayan

Information security today is not about tackling the hacker question but using security models to create business value, according to KPMG risk advisory associate director Rob Goldberg.

Lend Lease had antivirus software running on all of the gateways, e-mail servers and desktops that serve its 10,000 workers worldwide, but that wasn't enough to prevent a Blaster attack on Aug. 3, 2003. That incident prompted the global real estate management and financing company to begin a process that resulted in a sweeping revamp of its IT infrastructure.

If there's one thing the Atos Origin team understands as lead contractor for the Olympic IT infrastructure, it's that you must learn from your mistakes.

Melbourne's Exhibition and Convention Centre has implemented a system to monitor database activity following a state government security audit.