CISSP Reloaded Domain 7: Applications and Systems Development
CISSP Reloaded Domain 7: Applications and Systems Development Secure applications aren’t the result of evolution or chance conditions coming together. Secure applications are only created with a definite degree of intelligent design. You, as the security person are responsible for providing that intelligent design into the application...
View Original Article on infosecisland.com
Shared by 1 person
More from this website
MI5 Chief: Cyber Espionage Threat on an "Industrial Scale" (infosecisland.com)
MI5 Chief: Cyber Espionage Threat on an "Industrial Scale" "Britain’s National Security Strategy makes it clear that cyber security ranks alongside terrorism as one of the four key security challenges facing the UK. Vulnerabilities in the internet are ...
Cyber Warfare, Budget Cuts and a Shortage of Cyber Experts (infosecisland.com)
Cyber Warfare, Budget Cuts and a Shortage of Cyber Experts Despite the increased engagement in cyber warfare, the US must faces a crisis which has inevitable effects on the budgets allocated to defense. U.S. Defense Secretary Leon Panetta often has exp...
We Don’t Need Cyber-Vigilante Justice (infosecisland.com)
We Don’t Need Cyber-Vigilante Justice You see what made me so mad? It wasn’t the release of the PII of all those innocent people, it was their reason for doing it. They reported a web site vulnerability and it wasn’t fixed, so they decided to post PII ...
CISSP Reloaded Domain Six: Operations Security (infosecisland.com)
CISSP Reloaded Domain Six: Operations Security Some argue that operations security is primarily focused around IT and bring up the old argument of IT vs infosec and the baggage that comes along with that. It’s an argument as old as whether PC’s are bet...
Infosec Island (infosecisland.com)
CISSP Reloaded Domain Eight: BCPs and DRs Some companies are not factoring cloud-based or 3rd party hosted applications into their DR plans because contractually the cloud provider is responsible. What would you do if your cloud-provider got hit by a d...
CISSP Reloaded Domain 4: Cryptography (infosecisland.com)
CISSP Reloaded Domain 4: Cryptography Cryptography, the dark art of information security. The deus-ex-machina, the silver bullet, the be all and end all of all security measures, so profound cryptography was first classed as a munitions. Widely misunde...
CISSP Reloaded Domain 5: Security Architecture and Models (infosecisland.com)
CISSP Reloaded Domain 5: Security Architecture and Models This domain has a good title and there is probably a lot one can talk about. There are not enough competent security architects on the market. Sure you can get a lot of penetration testers of or...
CISSP Certification, Information Security and Risk Management (infosecisland.com)
CISSP Certification, Information Security and Risk Management The ISC2 promote it as the premier security certification in the world and have you believe that with a CISSP comes great knowledge, power, mastery of the Force and an abundance of wealth. T...
CISSP Reloaded - Domain Two: Access Controls (infosecisland.com)
CISSP Reloaded - Domain Two: Access Controls Understand who’s trying to get access and choose the control that will really protect you. Or rather, I should say, the control should protect you long enough for you to do something about it. Otherwise you ...
CISSP Reloaded Domain Three: Telecoms and Network Security (infosecisland.com)
CISSP Reloaded Domain Three: Telecoms and Network Security Network security is so important yet because it’s complex, a lot of companies end up doing it wrong. Not as many people properly understand the security implications of the network and most com...