About the ITPI
Research Reports
Benchmarking
White papers
Visible Ops Books
Visible Ops Blog
Sponsors and Partners
ITPI Press and News
Join the ITPI
Related Links
Select Articles
ITPI Store
Contact us
Sign me up!
Email Address
I would like to receive a quarterly update on ITPI research findings and related content.
I would like to receive email invitations to participate in upcoming surveys
Privacy Statement
Visible Ops Blog
Visible Ops authors blog on IT Audit, IT Operations, and IT security related topics.
IT Audit (8)
IT Operations (29)
IT Security (11)
This Blog
About
Email
Calendar
Jun
July 2008
Aug
S
M
T
W
T
F
S
29
30
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
1
2
3
4
5
6
7
8
9
Search
Go
Syndication
RSS 2.0
Atom 1.0
Archives
June 2008 (1)
May 2008 (1)
April 2008 (3)
March 2008 (3)
January 2008 (1)
August 2007 (1)
July 2007 (1)
June 2007 (1)
May 2007 (1)
April 2007 (4)
March 2007 (3)
January 2007 (5)
July 2006 (2)
June 2006 (2)
May 2006 (3)
April 2006 (13)
IT Security
(RSS)
Monday, June 16, 2008 12:01 PM
Do data breach disclosure laws reduce identity theft?
Suspense building... You have to click on the link to find out what our friend Sasha Romanosky over at Carnegie Mellon, has found through anaysis of emperical data!http://weis2008.econinfosec.org/papers/Romanosky.pdf Hint - these laws may have other
posted by
Paul Love
|
0 Comments
Filed Under:
IT Security
Monday, April 28, 2008 11:24 AM
What is your CFO reading about security?
CFO Magazine has a great article for a significant Information Security customer inside your organization. I suggest all security professionals read this non-technical, honest discussion on security controls and their importance.Enjoy,Paul
posted by
Paul Love
|
0 Comments
Filed Under:
IT Security
Monday, April 07, 2008 3:16 PM
Breaking Through Organizational Silos
The Visible Ops Security authors recently conducted a Webinar with Info Security Magazine with the following description “How can IT security practitioners break through organizational silos, removing the stigma associated with security controls and
posted by
Paul Love
|
0 Comments
Filed Under:
IT Security
Tuesday, March 18, 2008 10:25 AM
You Have Competition!
It's odd to think that as Information Security professionals, we have competition within our companies/organizations for the services we provide. One of the primary services most Information Security professionals provide is consultation on risk. In that
posted by
Paul Love
|
0 Comments
Filed Under:
IT Security
Wednesday, March 12, 2008 10:39 AM
The power of NOT saying "No"
Find workables alternative - instead of saying "Nno...
posted by
Paul Love
|
0 Comments
Filed Under:
IT Security
Monday, March 03, 2008 1:16 PM
Visible Ops Security
What will this blog cover? Not technology...
posted by
Paul Love
|
0 Comments
Filed Under:
IT Security
Monday, January 28, 2008 12:49 PM
Visible Ops Security - new author blogging
The IT Process Institute will soon release the second Visible Ops title. Please allow me to introduce Paul Love who is one of the authors of this new work, and a practicing Security Professional. Paul will be adding security related blogs
posted by
kurtmilne
|
1 Comments
Filed Under:
IT Security
Wednesday, March 14, 2007 9:59 AM
Health IT
Healthcare organizations are rushing to implement information technologies for a variety of reasons including cost pressures and regulatory mandates. This drive to implement electronic medical record (EMR) systems and the increasing level of automation
posted by
George Spafford
|
0 Comments
Filed Under:
IT Audit
,
IT Operations
,
IT Security
Wednesday, January 31, 2007 11:43 AM
The Stick - additional training as gentle deterrent
One more post on the use of consequences as a way to enforce documented procedures - then we'll move on to the use of the carrot. Here is a link to an article that offers an interesting idea. It highlights a technique to help enforce security related
posted by
kurtmilne
|
1 Comments
Filed Under:
IT Operations
,
IT Security
Sunday, June 04, 2006 10:39 AM
Detected Changes are Incidents
As we cover in Visible Ops, the use of a detective change control can really reinforce the adoption of Change Management and then be used to report all changes thus allowing for tighter control of operations, an improved security posture, and so on.
posted by
George Spafford
|
0 Comments
Filed Under:
IT Audit
,
IT Operations
,
IT Security
Monday, April 03, 2006 3:36 PM
The Journey from Chaos to Clarity
Last week presented me with several interesting conversations with senior IT executives. Several of the more interesting talks were with folks in the operational hot-seat. There was a golden thread that ran through all of them. Now these were not what I would call casual conversations. In fact, all but one of these folks were seeking advice on how to turn their massive mission-critical IT shops around. What did they all share?
posted by
Kevin Behr
|
2 Comments
Filed Under:
IT Audit
,
IT Operations
,
IT Security