PCI & Compliance
News
Unixpac Launches LockPath, the Governance Risk and Compliance (GRC) Visionary Solution to Australian Risk and Assurance Professionals.
Unixpac now represents LockPath,a Kansas US based solution vendor, provider of the most innovative governance risk and compliance applications (GRC).
How to protect online transactions
The trusty telephone is emerging as one of the key elements in new multifactor authentication schemes designed to protect online banking and other web-based financial transactions from rapidly evolving security threats.
SaaS, APTs and asymmetric risk take spotlight at Security Threats 2012
I had the opportunity to speak at a new security conference last week, Security Threats 2012. I presented on the topic of balancing business benefits with risks in the cloud (more on that later), but the event touched on a wide range of pertinent IT topics, provoking stimulating discussions of some of the most pressing challenges business leaders are facing.
End-to-End Encryption: The PCI Security Holy Grail
With groups like Anonymous actively looking to embarrass your company, laptops thefts occurring every second, and the recent poor US District Court ruling on fifth amendment password protection rights, it is time you actually encrypt your data properly.
Schumer seeks FTC probe of OnStar privacy policy
GM subsidiary OnStar's plan to collect and share GPS tracking and other data from vehicles even after their owners stop subscribing to its service has prompted an outcry from some lawmakers.
Opinions
Opinion : Mark Ames discusses "Value for Policy"
Your board and audit committee are looking for reduction in risk exposure driven by your information security policy. Is this something you can track and measure?
Get exclusive access to CSO, invitation only events, reports & analysis. 
-
Vormetric appoints M.Tech as Australian and New Zealand Distributor
-
Gigamon wins Best of Show Grand Prix at Interop Tokyo 2013
-
A10 Networks’ new Thunder Series receives two awards at Interop Tokyo for Performance Optimisation and DDoS Mitigation
-
Silver Peak names founder David Hughes as CEO
-
Next-Gen Point of Sale Package Now Available for Australian Stores
Incident handling is a vast topic, but here are a few tips for you to consider in your incident response. I hope you never have to use them, but the odds are at some point you will and I hope being ready saves you pain (or your job!).
- Have an incident response plan.
- Pre-define your incident response team
- Define your approach: watch and learn or contain and recover.
- Pre-distribute call cards.
- Forensic and incident response data capture.
- Get your users on-side.
- Know how to report crimes and engage law enforcement.
- Practice makes perfect.
Warning: Tips for secure mobile holiday shopping
I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.
