An Information Security Management System (ISMS) is a security framework comprised of policies, processes and the management of technologies to address an organisation’s information security requirements.
The implementation of DNSSEC has been gaining momentum recently as organisations and vendors implement and make available the systems and tools required to ensure the integrity of the DNS lookup process.
Interesting article in the NY Times here
It discusses the loss of an unencrypted laptop by a NASA employee that contained the confidential details of 10,000 employees including names, birth dates, social security numbers and, in some cases, personal information from background checks.
The news yesterday and Monday was all about Telecom’s Xtra service and Yahoo. The media were outraged on behalf of everyone and a number of commentators took to the airwaves to tell us just how bad this was.
We do a lot of risk assessments… a lot…. As a result, we spend a lot of time talking about risk, how it is measured and most importantly what it delivers for an organisation. We also do a lot of reading.
Following the much publicised MSD breach last year, the Government CIO initiated a review of publicly available information systems in all of the NZ Government agencies.