Information Security Archives - Page 3 of 7

Rapid Reaction: A Series on Incident Management and Response

By Jim, on 14 October, 2016

This is the first in a series of articles that aim to help organisations build and maintain their information security incident management and response capability.

With the exception of a few organisations, it seems that the effort put into establishing an information security incident management and response capability is limited to developing a documented process. Most do the bare minimum required to tick the “has an incident response process” box, with little to no regard about how effective the process is. That’s why very few organisations actually detect information security (or cyber security if you prefer) incidents in a timely manner, and fewer still are able to handle and resolve them in an efficient and effect way to minimise the impact.
Read More

Who cares about unique identifiers?

By Michael, on 22 July, 2016

Almost everyone has been on the receiving end of a request to provide photo identification (most commonly a drivers’ licence or a passport) when applying for a bank account, or purchasing a new mobile phone, or some similar account-based transaction. The person making the request typically either writes down the details of the document or photocopies it. But there is one piece of information that should not be captured unless there is a legitimate reason to – the unique identifier.
Read More

Risky Business

By Jim, on 28 January, 2016

There is a significant focus within government agencies on the management of risks associated with the adoption of cloud services. This is to be expected as the general perception is that the “cloud” is risky and that adopting cloud services could result in bad outcomes.

Axenic wins iSANZ Best Security Project / Initiative award

By Jim, on 10 December, 2015

Axenic is proud to announce that it has been selected as the winner of the Best Security Project / Initiative category in the 2015 iSANZ awards. Axenic was nominated for its security and privacy work on an innovative cloud and mobility project in the health sector.

Who can afford an attack on their Critical Infrastructure?

By Jim, on 25 September, 2015

The world does not suffer from a shortage of hostile individuals or nations, from politically motivated parties, groups and nations, to ideologically motivated individuals and profit-motivated criminals. Information security attacks remain on the top of the list for being a global extensible war tool.

Compliance, a way to provide clients with the assurance that you can safeguard their information

By Jim, on 27 March, 2015

Perform a search on compliance and you will find that there are many definitions. People have a slightly different view of what compliance means and what is included or not. In general, compliance means conforming, satisfying or adhering to a rule. This rule can be a specification, a policy, a standard, a law, a procedure or a requirement.

The Blog

Category: Information Security