security
Tools of the Trade: cvrfparse
Prologue In this article, you will be provided a thorough treatise on an in-house developed tool for parsing and validating CVRF documents aptly named “cvrfparse”. The article is split into two parts. The first part, intended for CVRF document producers and consumers, is a hands-on manua…
PCI-related Observations from RSA 2013
As a frequent attendee of the US RSA Conference in the past, this year I had the opportunity to work in the Cisco booth on the exhibition floor. This year’s RSA event was very busy, it seemed like there was a continuous flow of people and energy across the show floor. I had the pleasure of staffing…
Becoming PCI certified…is this within reach?
Anyone who has been involved with compliance knows that simplifying complexity is the key to maintaining a secure and compliant organization. It’s become quite apparent that sustaining compliance is a marathon, and the journey must be travelled with vigilance. This is not something that is an endpoi…
Three Transitions Driving Net-Centric Security
When I think about IT security, I don’t immediately start thinking about threats, hackers and countermeasures, but begin with what is happening to IT in general. Right now, the three big megatrends in IT can be summed up in three words: virtualization, collaboration, and mobility. Unfortunately, it’…
Securing Your Company’s Data in a Mobile World
Mobile workers accessing corporate applications and data from a range of personal and corporate devices is fast becoming the new normal. Month by month every survey confirms the inevitable—mixing personal and business data, devices, and apps. Companies are scrambling amidst a sea of new technologies…
Why the Cisco SIO Portal Doesn’t Give Out Candy
“Change is inevitable—except from a vending machine.” In the spirit of Robert C. Gallagher’s famous quote—and in our quest to never be a vending machine—we’ve rolled out several updates to Cisco’s Security Intelligence Operations (SIO) Portal which I trust you will find…
Defense in Depth with Software Defined Networking
Last week at the RSA Conference in San Francisco, I had the pleasure of speaking to thousands of security professionals about the opportunities and risks associated with using Software Defined Networking (SDN) for security, which will be the underlying fabric of our next generation data centers and…
Cisco’s New Small Business Portfolio—Fortifying the Future
The number of mobile-connected devices has broken the 1 billion mark. That’s not too surprising, given that as we grow more reliant on our devices and mobility, we also become more reliant on the Internet to get things done, take care of customers, and expand our businesses. In fact, we see a future…
Social Media Is Like Stir-From-the-Bottom Yogurt, Culture and All
Security and its integration with social media continues to be a topic of conversation amongst my colleagues in Security Intelligence Operations. We observe how “being connected” has become an integral part of many lives around the world: each voice has an opportunity to be heard, provid…