You may be aware that the EU recently put into force the updated ePrivacy Directive (2002/58/EC). As of May 2011, the use of cookies to track website visitor information is now strictly prohibited. Cookies which were previously used to track visitor behaviour and personal details may now only be used with the express permission of the visitor. Interesting [...]
This article draws on elements of gravity theory to help visualise information security concepts and to describe how to practically implement security policy objectives. It describes a metaphorical model where gravitational forces are analogous to the level of security controls we apply to an organisation’s information. Be warned, this will quite possibly be the nerdiest article I have written, [...]
Certification, sometimes it’s worth doing, sometimes it isn’t. The Certified Information Systems Security Professional(CISSP) which is officiated by the ISC2 certainly is. I’ve been looking at boosting my cert. status over the last few months and assessed a few professional level certifications, particularly in the area of Information Security. Having examined the various possibilities my conclusion was [...]
Web 2.0 was recently crowned the one millionth word of the English language. This is perhaps just one indicator of the impact that Web 2.0 has had on our everyday lives. Why? In this blog, I’m going to go into what Web 2.0 actually is, some of the underlying technologies and what challenges these bring [...]
Data Loss Prevention (DLP) is a newer area of information security and assurance which has arrived in recent years. There are a host of software products, controls and solutions which have found there way onto the market to help facilitate DLP, whether those losses be malicious or inadvertent. This market seems fledgling but is maturing [...]
Loading ...
