Tekrati Analyst Blogs Directory | Security and Risk Management Strategies Blog

Get OPML of entire directory

Security and Risk Management Strategies Blog
http://srmsblog.burtongroup.com

Daniel Blum, Trent Henry, Ramon Krikken, Pete Lindstrom, Eric Maiwald, Phil Schacter
Burton Group

Proactive security, de-perimeterization, OS and endpoint security, information-centric security architecture, and sustainable compliance
http://srmsblog.burtongroup.com
Subscribe to this blog

Catalyzing security in service orientation
5 days ago
Blogger: Ramon Krikken

Many different conference tracks, many different perspectives on 'security' and how to best implement it. I spent most of my time in the Service-Oriented Architecture (SOA) track, looking for little nuggets of wisdom to help with my upcoming SOA security overview, and I certainly did find some. There were - luckily - no huge upsets, but there were certainly lots o ...

Enforceable Policies
8 days ago
Blogger: Randall Gamby

Across the different security technology presentations given this week at Catalyst, one common theme has been the important role of policy. As people hear about new and better technologies and how they can be integrated into their existing infrastructures, they should take the time to examine their policies to make sure they keep up with the solutions being consid ...

Your Top Ten Strategic Security Metrics
9 days ago
Blogger: Pete Lindstrom

Yesterday, I gave a keynote at our Catalyst Conference that introduced a set of ten strategic security metrics. These metrics are:

Transaction Value (TV) - (Total Value of IT and Information Assets $ / Total Transactions) Transaction Cost (TC) - (Total Cost of IT and Information Assets $ / Total Transactions) Controls per Transaction (CPT ...

It's not all about vendors
9 days ago
Blogger: Trent Henry

The life of an Analyst can be dangerously cloistered. I know many (non-Burton) colleagues whose time is spent almost exclusively at vendor conferences and in briefings with product teams. Although a certain amount of vendor interaction is important--otherwise we can't help clients understand what technologies/solutions are more promising than others--it's easy t ...

Interesting thoughts on oversight and governance
9 days ago
Blogger: Eric Maiwald

This morning at Catalyst Nick Leeson, of Barings Bank fame, spoke as part of the GRC track. It was interesting to learn what happened back in 1995 as Barings Bank failed. While Nick’s story was interesting, I think there are insights that we can pull out of what he said:

Technology might be useful in bringing risky activities to the attention of ...

SEARCH THE ANALYST BLOGS