information technology

Upcoming - ILTA LegalSec 2017

Security Management Partners will sponsor and exhibit at next week's LegalSec2017 conference in Virginia. Attendees are encouraged to meet with Ed Greenberg, Senior Security Services Account Director of SMP in Booth No. 27. 

"Two Days All About Security For Legal" - The target audience for ILTA’s LegalSEC Summit is legal technology professionals at every level and general counsel who touch legal security in their law firm or law department and want to learn more and connect with peers.

When: Tuesday, June 13-Wednesday, June 14, 2017
Where: Crystal Gateway Marriott, Arlington, VA

Learn more: http://legalsec.iltanet.org/home

#InformationSecurity News - 12/10/14

  • $150K HIPAA Fine for Unpatched Software - OCR Imposes Penalty on Alaska Mental Health Provider. Read more at Healthcare Info Security
  • Bank Info Security reports that a type of cryptographic flaw known as POODLE, first publicly revealed Oct. 14 in SSL, has now also been found in Transport Layer Security. 
  • KrebsOnSecurity shares more information on wiretapping ATM skimmers complete with pictures of tapped machines. 
  • A new study indicates that 58 percent of businesses do not have complete patch management strategy, according to SC Magazine
  • Information Week's Dark Reading shares that IBM researchers have uncovered an attack that takes advantage of the "SpoofedMe" social login feature.

     

Roundtable: Advice on IT security budget management

"Security is often characterized in binary terms: 'I need to be absolutely sure I've eliminated X risk.' But security isn't an absolute. It's about defining acceptable levels of risk to your business so you're able to justify spending accordingly."

Read more via Search Security

Upcoming Event: Cloud Maturity – How to Solve Your Cloud Security Challenges

WHO: Alan Mayer, CISA, CISSP, Information Security Consultant for Security Management Partners, a leading, independent information security and assurance firm

WHAT: Will host the session "Cloudy with a Few Gotchas” during the upcoming ISACA Cloud Maturity virtual conference

WHEN: Wednesday, December 4, 2013 at 1:30 p.m. EST. 

WHERE: For registration and additional details, please click here

DETAILSMany companies have started using cloud services, or are thinking about using them. Going to the cloud to outsource an IT service or function adds specific risks to the customer’s initial risk equation. The cloud can be an opaque place and good preparation is essential. Customers must strive to minimize uncertainty and to control risks as best as possible. Using cloud services can transform IT operations and require significant adjustments to IT management systems and processes. This presentation will examine some specific cloud services security requirements, risks and pitfalls, and corresponding risk mitigation strategies. Recent evolutions in cloud services and their impact on IT operations and services will be discussed.

Cybersecurity training on the rise for young students

Amid rising sentiment that America's cyber security threat fully rivals the terrorism threat, it is becoming time for U.S. citizens -- especially younger citizens -- to educate themselves about cyber security and assume part of the responsibility to thwart attacks.

For younger people, there are a growing number of cyber educational opportunities, starting even before the college level, which can make them particularly effective at thwarting cyber attacks and may spark their desire to pursue cyber security careers.

Continue reading the article via USA Today.