Practical Compliance and Security Bloghttp://blog.practical123.com/blog/Audit, Compliance, Information Security and IT Management Discussionsen-US2008-10-07T23:01:22ZSquarespace Site Server v5.0.0 (http://www.squarespace.com/)More Insider Threat Info - San Francisco Held Cyber-Hostagehttp://blog.practical123.com/blog/2008/7/17/more-insider-threat-info-san-francisco-held-cyber-hostage.htmlPractical Andrew2008-07-17T13:25:41ZTraining and Awareness Information Security IT ManagementWired Magazine ran a great article in their blog section today on a recent case where a network administrator had set himself up as the top level administrator on their network and locked everyone else out.

Wired Magazine - San Francisco Held Cyber-Hostage

This article illustrates two key points that have been a common topic lately:

The first is that the impact of an insider threat can be extremely high
The second is that insider events are less frequent

The combination of these two things makes things challenging for security management teams. It makes overcoming the 'That will never happen to us' perception difficult and makes driving internal security more important.

The key is to focus on point 1. Impact. From a risk manager's viewpoint, the trade off on reducing millions of dollars of risk in comparison to adding one or two IT salaries is a good decision. As IT and security managers, we need to continue to improve on our ability to profile risk in terms of impact and business dollars.

]]>Information Security Standards in Briefhttp://blog.practical123.com/blog/2008/7/15/information-security-standards-in-brief.htmlPractical Andrew2008-07-15T18:26:07ZInformation SecurityAre We Over Estimating Internal Threats - Analysis of Verizon Data Breach Reporthttp://blog.practical123.com/blog/2008/6/25/are-we-over-estimating-internal-threats-analysis-of-verizon.htmlPractical Andrew2008-06-25T12:28:23ZInformation SecurityInsider Threats - Educating the User Communityhttp://blog.practical123.com/blog/2008/6/17/insider-threats-educating-the-user-community.htmlPractical Andrew2008-06-17T17:01:07ZTraining and AwarenessInternal Threats - Business Problem of Separation of Dutieshttp://blog.practical123.com/blog/2008/6/17/internal-threats-business-problem-of-separation-of-duties.htmlPractical Andrew2008-06-17T16:52:39ZInformation SecurityInsider Threats - USB Device Issueshttp://blog.practical123.com/blog/2008/6/17/insider-threats-usb-device-issues.htmlPractical Andrew2008-06-17T16:46:00ZInformation SecurityISACA Insider Threats Presentation - Follow Up Questionshttp://blog.practical123.com/blog/2008/6/4/isaca-insider-threats-presentation-follow-up-questions.htmlPractical Andrew2008-06-04T13:56:00ZTraining and AwarenessResponding to Major Disaster - A Customer's Viewhttp://blog.practical123.com/blog/2008/6/2/responding-to-major-disaster-a-customers-view.htmlPractical Andrew2008-06-02T16:18:17ZBusiness Continuity and Disaster RecoveryBluetooth Security In Questionhttp://blog.practical123.com/blog/2008/5/28/bluetooth-security-in-question.htmlPractical Andrew2008-05-28T16:34:48ZInformation SecurityMalware Information Theft - No Experience Requiredhttp://blog.practical123.com/blog/2008/5/15/malware-information-theft-no-experience-required.htmlPractical Andrew2008-05-15T17:56:53ZInformation Security