Email Alerts
-
Vodafone India’s PCI DSS compliance journey: A dissection
With Vodafone India’s PCI DSS compliance journey in its third iteration, we share practical PCI DSS tips and ground realities from the telecom major. Feature
-
Information security and risk management guides for CIOs
Keeping your IT organization safe and secure is one battle. Doing it while staying in compliance with all applicable laws and regulations is another. These CIO Briefings will help you do both, and then some. Tutorial
-
Security tech market set to grow 8.7% in 2013, says Gartner
The worldwide security technology and services market will reach $67.2bn in 2013, up 8.7% from 2012, according to research firm Gartner News | 11 Jun 2013
-
BYOD: Securing the risk to access the cost benefits
Bring-your-own-device schemes offer businesses the opportunity to cut the costs and improve user experiences, but benefits can be dwarfed by the risks. News | 17 May 2013
-
Six ways to secure IP V6
Indian businesses must take charge of the inherit security threats that migrating to IP V6 brings. News | 26 Apr 2013
-
Indian companies must increase phishing awareness
Businesses are being targeted for phishing attacks. These attacks are increasingly turning into a corporate concern, with much at stake -- such as reputation damage. News | 25 Apr 2013
-
IDFC’s information security awareness week tastes success with ‘Mr Gobo’
Financial major IDFC set out to craft its information security awareness initiative with a portal that led users via a ‘Mafia don’s den’. Step in for more. News | 08 Feb 2012
-
Funding, carelessness, hurdles to secure networks: Dr Whitfield Diffie
Cryptographic pioneer Dr. Whitfield Diffie spoke at SecurityByte 2011 in Bengaluru, where SearchSecurity caught up with him. Here’s what he had to say. News | 15 Sep 2011
-
RBI guidelines focus on fortifying IT security by banks
RBI has issued security guidelines for the Indian banks that touch upon aspects such as IT governance, security, and cyber fraud. News | 21 Jan 2011
-
Compliance Q&A: Chief audit executives seek credibility with C-suite
With corporate scandals elevating the importance of chief audit executives, now is the time for CAEs to strategically partner with the C-suite, says Deloitte veteran Shayne Gregg. Interview | 10 Nov 2010
-
ISACA launches Business Model For Information Security
The Business Model for Information Security (BMIS) launched by ISACA provides a holistic approach for managing information security, while directly addressing business objectives. News | 08 Oct 2010
-
Security metrics lessons from Infosys
Infosys leverages security metrics to measure the effectiveness of its security posture and risk framework. Case Study | 08 Sep 2010
- See more News on Information security policies and end-user awareness training
-
How to reduce IT security risk with IT asset management
IT asset management expert Barb Rembiesa explains how ITAM best practices like IT asset standardization and rationalization reduce IT security risk. Tip
-
A CIO's five-point plan for managing endpoint security
Niel Nickolaisen offers a five-point solution for managing endpoint security for the hyper-connected enterprise -- starting with data governance. Tip
-
Low-cost methods for secure, large file transfer
Transferring large files safely can be a costly process. Matt Pascucci offers low-cost options for secure, large file transfers in the enterprise. Tip
-
How to begin corporate security awareness training for executives
Expert Ernie Hayden provides advice for enterprises that are establishing security awareness training for their security-unaware executives. Tip
-
Security awareness training made easy
A robust security awareness training program for employees is essential. Here’s how you can effectively increase security awareness in your organization. Tip
-
Map your data classification policy to controls effectively: How-to
Data classification policy plays an important role in control implementation and effectiveness. We take a look at the involved parameters. Tip
-
Pitch for security investment planning: How-to
Security investment planning for a scalable future-proof business infrastructure can be tricky. Here’s how you can prepare the business case. Tip
-
Three mobile device security policy lookouts from ISF
Advice from Information Security Forum (ISF) on how to draft a comprehensive mobile device security policy, given the evolving mobile device environment. Tip
-
Leveraging ISO 27005 standard’s risk assessment capabilities
In this first of a series of articles on risk assessment standards, we look at the latest in the ISO stable; ISO 27005’s risk assessment capabilities. Tip
-
Security awareness training mantras from Central Bank of India
Get insights into Central Bank of India’s comprehensive information security awareness training programs. Tip
- See more Tips on Information security policies and end-user awareness training
-
How to address password change frequency, reuse for third-party apps
Expert Michael Cobb explains how password change frequency and reuse for third-party apps should be addressed in enterprise password policies. Answer
-
Best practices for choosing an information security team new hire
Hiring someone for your information security team? In this expert response, information security management expert David Mortman explains what relevant information security experience is. Ask the Expert
-
Employee information security awareness training for new IAM systems
When an enterprise gets new IAM systems, training employees on how to interact with the technology is one of the most important aspects of deployment. Learn how to implement employee information security awareness training for new IAM systems and tec... Ask the Expert
-
information security management system (ISMS)
An information security management system (ISMS) is a set of policies and procedures for systematically managing an organization's sensitive data. Definition
-
vulnerability and patch management
Vulnerability management is a pro-active approach to managing network security. Definition
-
CERT-In (the Indian Computer Emergency Response Team)
CERT-In (the Indian Computer Emergency Response Team) is a government-mandated information technology (IT) security organization. The purpose of CERT-In is to respond to computer security incidents, report on vulnerabilities and promote effective IT ... Definition
-
Information Technology Amendment Act 2008 (IT Act 2008)
The Information Technology Amendment Act, 2008 (IT Act 2008) is a substantial addition to India's Information Technology Act (ITA-2000). The IT Amendment Act was passed by the Indian Parliament in October 2008 and came into force a year later. Definition
-
Highlights from PwC’s State of Information Security Survey, India 2013
We bring you excerpts from PwC’s India survey on the state of information security as part of this photofeature. Photo Story
-
Security tech market set to grow 8.7% in 2013, says Gartner
The worldwide security technology and services market will reach $67.2bn in 2013, up 8.7% from 2012, according to research firm Gartner News
-
How to reduce IT security risk with IT asset management
IT asset management expert Barb Rembiesa explains how ITAM best practices like IT asset standardization and rationalization reduce IT security risk. Tip
-
BYOD: Securing the risk to access the cost benefits
Bring-your-own-device schemes offer businesses the opportunity to cut the costs and improve user experiences, but benefits can be dwarfed by the risks. News
-
A CIO's five-point plan for managing endpoint security
Niel Nickolaisen offers a five-point solution for managing endpoint security for the hyper-connected enterprise -- starting with data governance. Tip
-
Six ways to secure IP V6
Indian businesses must take charge of the inherit security threats that migrating to IP V6 brings. News
-
Indian companies must increase phishing awareness
Businesses are being targeted for phishing attacks. These attacks are increasingly turning into a corporate concern, with much at stake -- such as reputation damage. News
-
How to address password change frequency, reuse for third-party apps
Expert Michael Cobb explains how password change frequency and reuse for third-party apps should be addressed in enterprise password policies. Answer
-
Low-cost methods for secure, large file transfer
Transferring large files safely can be a costly process. Matt Pascucci offers low-cost options for secure, large file transfers in the enterprise. Tip
-
Highlights from PwC’s State of Information Security Survey, India 2013
We bring you excerpts from PwC’s India survey on the state of information security as part of this photofeature. Photo Story
-
How to begin corporate security awareness training for executives
Expert Ernie Hayden provides advice for enterprises that are establishing security awareness training for their security-unaware executives. Tip
- See more All on Information security policies and end-user awareness training
About Information security policies and end-user awareness training
Get information security policy and end-user security training resources here. Learn how to draft an information security policy. Fine tune your information security policy and conduct security policy reviews. Conduct end-user security awareness training sessions. Effectively enforce security policies.