Showing Blog Posts: 1–10 of 24 tagged Security Culture

  • Information Security Policies, Procedures, and Standards: A Practitioner's Reference

    by Ben Rothke on October 13, 2016

    Security policies are like fiber (the kind you eat, not the telco type). Everyone agrees they are important, but often don’t want to deal with it. Most organizations eventually realize there comes a time that they are forced to tame the beast known as information security policies. They are often forced into this when it they get requests for a 3rd-party audit, PCI DSS compliance, visit from the…

  • Creating a Culture of Security and Privacy

    by Todd Inskeep on October 10, 2016

    It seems almost every day we turn on the news and learn of a new data breach or malicious attack on organizations ranging from the entertainment industry to healthcare and finance. The reality is, no organization is completely safe from an attack. And while this may seem grim, there are things organizations can do to help protect themselves. Many see this protection as a product—or stack of…

  • Top Things Even Security Experts Forget

    by Todd Inskeep on September 28, 2016

    National Cyber Security Awareness Month in October marks a good time for all organizations to think about how they can build and reinforce a workplace culture of security and privacy. This security culture has to be created, fed and reinforced through an investment in activities and engaging training materials throughout the year—not only during the annual security training meetings. As…

  • Getting Everyone on Board with Cybersecurity

    by Steve Sheck on September 16, 2016

    It’s shocking to those of us who work in the industry, but people still do not take cybersecurity seriously. How many people do you work with who still use “abc1234!” as a password? Or say things like “I haven’t updated my phone’s OS in months?” Many think of cybersecurity like a home defense system. You push a button, and the house (your organization) is secure. That’s not the case. Imagine if, …

  • Cybersecurity Conventions: A Newcomer's Perspective

    by Dale "Woody" Wooden on August 31, 2016

    First, let me start by saying yes, I will be doing a follow-up to RFID blocking wallets. I’m still testing this material and only had one manufacturer who sent me equipment for the Pepsi Challenge. (You can send inquiries to But let me talk now about cybersecurtiy conferences. This year was my first attending one cybersecurity event and my second at another. I’m…

  • Summer Slacking: 8 Security Mistakes Your Users Are Making

    by Ryan Berg on August 9, 2016

    As an IT professional, you’re expected to be always on. But for your users, it’s summertime, and that means BBQ’s and beer (although in Texas that’s pretty much year round.) With cookouts to host and vacations to plan, following your company’s security policies to the letter isn’t going to be the first thing on your users’ minds. Here are seven mistakes your users are prone to making during the…

  • The Importance of Developing Cybersecurity Resilience in the Middle East

    by Stephen Brennan on July 8, 2016

    The Middle East features a complex mix of developed and developing economies, with varying levels of infrastructure deployment, and ICT connectivity. Compounding these variances are the geo-political overtures present in the region, which create a patchwork of allies and adversaries in a concentration that is probably not found anywhere else on the planet. Security experts understand that…

  • Is the Security Profession too Arrogant?

    by Ira Winkler & Araceli Treu Gomes on June 24, 2016

    It is always interesting to see the comments that we get back from our presentations. This was especially true after our most recent RSA presentation on Advanced Persistent Security, a follow-up to our 2015 presentation, The Sophisticated Attack Myth, where we discussed that the most notable cybersecurity attacks were not due to sophisticated attackers, but rather a lack of basic security…

  • The Most Overlooked Ways to Prevent Getting Hacked

    by Caitlin Moriarity on May 17, 2016

    In a world where cybersecurity threats are continually evolving, you'd be surprised how simple it is to prevent getting hacked. "The difference between a company that gets hacked and the company that doesn't get hacked, I've found," says Norman Guadagno, chief evangelist at Carbonite, "is the difference between who clicks a link in their email, and who doesn’t." Threats are everywhere All business…

  • Why Cybersecurity Information Sharing Is Important

    by Rook Security on March 17, 2016

    By Tom Gorup The more information, the better. Right? In most cases, that is the truth. However, the way in which information is shared makes all the difference. Companies don’t share cybersecurity information because they fear attacker retribution and legal recourse. They don’t want to cause further retaliation from an attacker or show so much transparency that they could possibly cause the…

This document was retrieved from on Fri, 21 Oct 2016 12:38:54 -0400.
© 2016 EMC Corporation. All rights reserved.