Security professionals are expected to be proficient with a wide range of security techniques, but which qualifications do you need to progress to your career?

by Mr. Rion Dutta (Published Network Magazine - September 2005)

Database encryption is often overlooked by even security-conscious IT administrators and managers. The article details the importance of this aspect of information security. Read More...  

HTML

Mobile Phones are ubiquitous in modern day society. However, few people are aware of the threats to these devices by Trojans, viruses and other malicious code which can potentially hijack and corrupt the data on them; ranging from the phone’s address books to its operation system....

Encryption is a complex subject and implementing it requires not just a technical understanding of the theories, but also insight into practical applications in the real world....  

PDF

As enterprises face ever increasing threats to their information assets and simultaneously need to demonstrate compliance with stringent regulatory standards for corporate governance, IT management are recognizing the growing need for infosec professionals with more than technical experience and on-the-job training....  

Email security breach is becoming an increasingly significant threat to organizations around the world. Despite the risks, there is no escaping the fact that e-mail is rapidly becoming the principal means of business communication. Draconian restrictions on use are therefore not tenable. However, rigid application of stringent security policy certainly is....

Dealing with a virus in a professional and planned way reduces both its impact and its spread throughout the organization and beyond. A failure to respond appropriately to a virus incident can rapidly result in multiple system failures and continued infection.

For best practice guidelines on how to respond to virus incidents....

Spam is more than just an irritant – it results in lost productivity, often carries malicious code and increases the burden on storage and networking resources. Despite companies adopting anti spam solutions and legislation against spammers, spam is very much a problem for today’s IT Managers....

Organizations spend inordinate sums of money on firewalls, patch management, anti-virus and other solutions yet are typically short-sighted when it comes to the fact that their core business information is processed by applications whose security credibility stands untested....

One of the most important aspects of Business Continuity Planning for the majority of organizations is in choosing an appropriate strategy for the back-up and recovery of the IT based systems....

SOX is more than a toothless mandate – it identifies the guilty and enables prosecutors to go after them with plenty of ammunition....

By and large, the information security industry has done a poor job in explaining what penetration testing is, how it works, and how the organization and the tester should best work together to ensure a variable result. It’s time that these questions, and other relevant ones are addressed in the context of penetration testing....

The trail to GSEC

by Mr. Avinash Kadam (Published Network Magazine - February 2004)

It may seem that the road to GSEC is a rough one, full of obstacles. So here are some tips and alternatives to steer round those dreaded potholes and barriers to reach the finish line.... Read Article

Security Certification

A career as Information Systems Auditor 

by Mr. Avinash Kadam (Published Network Magazine - December 2003)

The roles of IS Auditor and Information Security Auditor are becoming very significant. So CISA certification definitely opens up doors to many opportunities.... Read Article

CISSP Certification

Are you game for CISSP? 

by Mr. Avinash Kadam (Published Network Magazine - November 2003)

A large number of security professionals around the world are pursuing CISSP certification. Here are some valuable tips to help you prepare for the examination.... Read Article

Certified Personnel

Enterprises certified secure 

by Mr. Avinash Kadam (Published Network Magazine - October 2003)

A look at why your enterprise needs to use personnel with security certificates to conduct business better.... Read Article

Audit Compliance

Preparing for Audit 

by Mr. Avinash Kadam (Published Network Magazine - September 2003)

In this last installment of the BS 7799 series let's take a look at the crucial issues one should consider when taking the prudent approach to audit.... Read Article

Because business must go on 

by Mr. Avinash Kadam (Published Network Magazine - August 2003)

Here's what you can do to make your business continuity plan effective.... Read Article

Access Control

Tightening Access Control 

by Mr. Avinash Kadam (Published Network Magazine - April 2003)

The first security barrier to an organization's IT infrastructure is the access control system. Here are some ways to improve or complement your access control mechanisms.... Read Article

Communications & Operations Management

A cautious approach to information exchange 

by Mr. Avinash Kadam (Published Network Magazine - March 2003)

Our dependence on various media and devices for communication and information exchange with the outside world is increasing. So we need to take adequate steps to protect our infrastructure from the security hazards posed by such media and devices....

Personnel Security

Secure Physical Infrastructure too 

by Mr. Avinash Kadam (Published Network Magazine - February 2003)

CIOs should not be content with only a good data security frame work. They should also devise a good physical security infrastructure.... Read Article

Personnel Security

Securing your personnel assets 

by Mr. Avinash Kadam (Published Network Magazine - January 2003)

An organization's personnel are different from its other assets. Personnel assets require careful handling and two levels of security.... Read Article

Asset Classification and Control

Identifying and classifying assets

by Mr. Avinash Kadam (Published Network Magazine - December 2002)

The task of identifying assets that need to be protected is a less glamorous aspect of information security.... Read Article

Security Organization

Are you a Security Organization?

by Mr. Avinash Kadam (Published Network Magazine - November 2002)

Large amounts are being spent on acquiring latest security products. But without creating a security organization responsible for implementing the security process this expenditure would be wasted.... Read Article

Security Policy

Writing an Information Security Policy

by Mr. Avinash Kadam (Published Network Magazine - October 2002)

The importance of having an Information Security policy is now being acknowledged even by top management. But how do you go about writing an Information Security policy? .... Read Article

Information Security Management 

Why Information Security is important for your organization

by Mr. Avinash Kadam (Published Network Magazine - September 2002)

Information is the crown jewels of business. Your business partners want to know if you have done enough to protect your information assets .... Read Article

Planning for Single Sign On — A Whitepaper by Rion Dutta

9:00 a.m. on Monday morning. You can’t log in to the intranet. Your previous password expired last week and you entered a new password at the prompt, in line with your company’s dynamic password policy. The problem is that you’ve forgotten what it is.... Read Article (pdf)

For queries on Training / Security Certification Courses, Please write to isti@mielesecurity.com