IT Compliance and Controls

Converging Business, Information, and Controls

IT Compliance and Controls header image 4

Entries from August 2011

Weekly recap of Tweets, Links, and Ideas

August 29th, 2011 · No Comments

Please find below my mostly focused mentions on #infosec and relevant topics since 08-22-2011 .

[Read more →]

Tags: Technology Strategy Orchestration

Weekly recap of Tweets, Links, and Ideas

August 22nd, 2011 · No Comments

Please find below my mostly focused mentions on #infosec and relevant topics since 08-15-2011 .

[Read more →]

Tags: Technology Strategy Orchestration

Weekly recap of Tweets, Links, and Ideas

August 15th, 2011 · No Comments

Please find below my mostly focused mentions on #infosec and relevant topics since 08-08-2011 .

[Read more →]

Tags: Technology Strategy Orchestration

Weekly recap of Tweets, Links, and Ideas

August 8th, 2011 · No Comments

Please find below my mostly focused mentions on #infosec and relevant topics since 08-01-2011 .

[Read more →]

Tags: Technology Strategy Orchestration

Challenge base assumptions, such as pre-boot passwords, disk encryption, and their necessity

August 8th, 2011 · No Comments

When pre-boot authentication is not a safeguard … how does that change the risk landscape, the assumptions on other controls, and user behaviors? DEFCON 16 had a presentation on “Bypassing pre-boot authentication passwords by instrumenting the BIOS keyboard buffer (practical low level attacks against x86 pre-boot authentication software)”.  This is available for free consumption on [...]

[Read more →]

Tags: Uncategorized