Enterprise information security management

The challenges of information security management include regulatory compliance, risk management, information security standards, security frameworks, disaster recovery and more. In many IT organizations, the CIO or CSO is responsible for the information security management of the company. Find the latest information security management information for CIOs, including news, tips and other resources, here in this topic section.

Top Stories

Tip 08 Apr 2025
Ransomware payments: Considerations before paying

To pay or not to pay -- that's the question after a ransomware attack. Law enforcement recommends against it, but that doesn't stop some companies from paying up. Continue Reading
By
- Kyle Johnson, Technology Editor
Answer 07 Feb 2025
7 key identity and access management benefits

Identity and access management benefits users, security and IT admins, and it also improves an organization's security posture. Read up on seven key advantages of IAM. Continue Reading
By
- Sharon Shea, Executive Editor
- Andrew Froehlich, West Gate Networks

Answer 08 Jun 2018
How can companies protect against ransomware in the cloud?

When it comes to ransomware attacks, cloud storage is not foolproof. CyberSight's Hyder Rabbani offers tips about how to address cloud ransomware threats. Continue Reading
By
- Mekhala Roy
Feature 01 Jun 2018
Business email compromise moves closer to advanced threats

The sophisticated techniques used in BEC scams differ from other email fraud in the steps taken to construct the criminal campaign. Here's how to stop these APT-style attacks. Continue Reading
By
- Adam Rice
Survey 01 Jun 2018
Insider threat report tracks annual cost of theft, carelessness

The Ponemon Institute study "2018 Cost of Insider Threats" examines the cost to companies victimized by material insider threat incidents during the past 12 months. Continue Reading
By
- Kathleen Richards
Opinion 01 Jun 2018
Walmart's Jerry Geisler on the CISO position, retail challenges

A global CISO in charge of one of the world's largest cybersecurity programs got his start on the retail floor. He's arrived just in time for the digital transformation. Continue Reading
By
- Kathleen Richards
Opinion 01 Jun 2018
Cybercrime study: Growing economic ecosystem spells trouble

New research shows that cybercriminals are gaining momentum with connected infrastructure and collectively earning billions annually from a cybercrime economy. Now what? Continue Reading
By
- Kathleen Richards
News 31 May 2018
New Walmart CISO discusses protecting the world's largest retailer

Walmart CISO Jerry Geisler talks about the retail giant's evolving cloud strategy, vulnerability management and risks the company is focused on across its environments. Continue Reading
By
- Kathleen Richards
News 31 May 2018
Enterprise cybersecurity strategy: What a CIO needs to know

Digital transformation is leaving businesses exposed to more cyberattacks. At the MIT Sloan CIO Symposium, panelists explain how much cybersecurity expertise is expected of CIOs. Continue Reading
By
- Mekhala Roy
News 29 May 2018
Threat hunting technology is on the rise, so are threats

Detection of advanced threats is the top challenge for 55% of security operations centers, according to a new survey, as more companies explore threat hunting programs. Continue Reading
By
- Kathleen Richards
Feature 29 May 2018
Enterprise data encryption: Preparing for a post-quantum future

With the race toward quantum computing underway, interest in post-quantum encryption is growing. ISACA's Rob Clyde explains how CIOs and CISOs can get up to speed. Continue Reading
By
- Mekhala Roy
Feature 29 May 2018
The time to think about post-quantum cryptography is now

Rob Clyde, chairman-elect of ISACA's board of directors, worries a lot about the world according to qubits. He explains why here -- and why post-quantum cryptography should matter to CIOs. Continue Reading
By
- Nicole Laskowski, Senior News Director
Feature 21 May 2018
CISO careers: Several factors propel high turnover

The average CISO tenure is approximately 24 to 48 months. Kudelski Security's John Hellickson discusses factors driving the high turnover rate and how to improve job satisfaction. Continue Reading
By
- Mekhala Roy
News 16 May 2018
Build a culture of innovation on PaaS platforms

Tech execs from Deutsche Bank and Experian at the Red Hat Summit in San Francisco shared their thoughts on reaping the benefits of PaaS platforms by addressing the risks head-on. Continue Reading
By
- George Lawton
Feature 14 May 2018
CISO soft skills in demand as position evolves into leadership role

Cybersecurity industry veteran Joan Pepin discusses how the evolution of the CISO role has made soft skills essential to thrive in the information security field. Continue Reading
By
- Mary K. Pratt
Tip 14 May 2018
Exchange Online security setup requires joint effort

A company that moves to Exchange Online must coordinate the efforts of its email administrators and its security team to maximize protections and meet compliance requirements. Continue Reading
By
- Reda Chouffani, Biz Technology Solutions
News 11 May 2018
Force multipliers in cybersecurity: Augmenting your security workforce

During his RSA conference keynote, IBM Security's van Zadelhoff highlighted cybersecurity's top three force multipliers and explained best practices to deploy them. Continue Reading
By
- Mekhala Roy
News 09 May 2018
IT pros name users, GDPR as biggest cloud computing security threats

The cloud is growing faster than companies can prepare for cloud computing security threats, a quartet of tech leaders say at a Boston forum. But managing risk is within reach. Continue Reading
By
- Jason Sparapani, TechTarget
Feature 09 May 2018
CISO: Data integrity and confidentiality are 'pillars' of cybersecurity

When it comes to protecting online info, one cybersecurity veteran says the role of a CISO is to first incorporate processes that maintain data integrity and confidentiality. Continue Reading
By
- Mary K. Pratt
Feature 08 May 2018
CIO uses master data management to speed digitalization

IMA Financial Group CIO Michelle Vercellino's effort to clean up, protect and govern the firm's data is an important step in the firm's quest for 'data intelligence.' Continue Reading
By
- Mary K. Pratt
Answer 04 May 2018
Best practices for cloud security: Be cognizant of what's in the cloud

In this Ask the Expert, Booz Allen Hamilton's Anil Markose offers the cloud security best practices organizations need to protect their cloud information. Continue Reading
By
- Mekhala Roy
Feature 30 Apr 2018
Cloud workload protection tool speeds cloud migration, saves time

Informatica deployed Aporeto's IT security tool to protect its cloud servers. It gained peace of mind -- and valuable time. Continue Reading
By
- Jason Sparapani, TechTarget
Feature 30 Apr 2018
Informatica enlists cloud workload protection platform for 'zero-trust' IT security

To secure its immense cloud operations, Informatica looks to a new tool, a cloud workload protection platform by Aporeto, with a deny-all approach to server access. Continue Reading
By
- Jason Sparapani, TechTarget
News 30 Apr 2018
Security awareness programs that work against human nature will fail

Security awareness programs should take into account that humans are basically 'lazy, social, creatures of habit,' said KnowBe4's Perry Carpenter at the CIO Boston Summit. Here are three tips. Continue Reading
By
- Brian Holak
News 30 Apr 2018
Top 2018 cybersecurity trends to watch out for

A glance at IT news shows cybersecurity trends remain on companies' radar. At the CIO Boston Summit, Cybereason's Jessica Stanford discussed steps to defend against risk. Continue Reading
By
- Mekhala Roy
Blog Post 27 Apr 2018
Vulnerability management programs need an upgrade for the cloud era

Gone are the days of simple, easily secured corporate networks. The proliferation of cloud computing, virtualization and containers means that the network is changing constantly, said Nate Palanov, ... Continue Reading
By
- Mekhala Roy
News 20 Apr 2018
Juniper CEO Rahim stresses cybersecurity training, automation at RSA 2018

During his RSA Conference keynote, Juniper CEO Rami Rahim encouraged leaders to be "agents of change" that embrace automation in cybersecurity and new training techniques. Continue Reading
By
- Mekhala Roy
Feature 17 Apr 2018
Tackling security debt: The role of risk register, patch management

In this Q&A, Akamai's Dave Lewis offers pointers on how to address security debt and also discusses how organizations can avoid incurring such debt. Continue Reading
By
- Mekhala Roy
Feature 13 Apr 2018
Security debt: Why you should pay attention

Akamai's Dave Lewis -- a speaker at the upcoming RSA Conference 2018 -- discusses how organizations build security debt over time and its potential risks. Continue Reading
By
- Mekhala Roy
Feature 13 Apr 2018
Lacking data management processes holds back digital business

The business fallout of poor data management processes goes well beyond security and privacy implications. Evident IT CEO David Thomas explains in this SearchCompliance Q&A. Continue Reading
By
- Ben Cole, Executive Editor
Answer 13 Apr 2018
Exchange IRM helps enterprises lock down information

Exchange Server's information rights management features put boundaries on messages and documents to avoid the mishandling of restricted content. Continue Reading
By
- Stephen J. Bigelow, Senior Technology Editor
Answer 11 Apr 2018
How do attackers build and use phishing kits?

With attackers looking to maximize their ROI, they are employing what is called a phishing kit to run scam campaigns. In this Ask the Expert, learn how such kits are built. Continue Reading
By
- Mekhala Roy
Feature 06 Apr 2018
Crypto-agility: Strategies and best practices to get there

Staying crypto-agile is vital for data security. Venafi's Paul Turner discusses how to establish crypto-agility and the need for creating an inventory of cryptographic assets. Continue Reading
By
- Mekhala Roy
Opinion 03 Apr 2018
Marcus Ranum decodes hardware vulnerabilities with Joe Grand

Computer hardware designs with dangerous security flaws? That's no surprise to renowned hardware hacker Grand. Continue Reading
By
- Marcus J. Ranum
Opinion 03 Apr 2018
Healthcare CISO: 'Hygiene and patching take you a long way'

Cybersecurity and healthcare can get along, according to CISO Joey Johnson, who leads the security program at Premise Health, but it takes patience and attention to the details. Continue Reading
By
- Alan R. Earls
Report 03 Apr 2018
CISO survey paints a grim picture: Weak staff, breach fears

Roughly 60% of CISOs expect phishing scams, malware disruptions and cyberattacks that cause 'significant downtime' to affect their company in 2018. Continue Reading
By
- Kathleen Richards
Opinion 03 Apr 2018
Cost of data privacy breach may not be enough

While the European Union is taking major steps to protect residents' data privacy, little has happened in the United States, even after Equifax and Facebook. Continue Reading
By
- Kathleen Richards
Feature 23 Mar 2018
Cybersecurity skills gap: Get creative about cyber hiring

Hiring candidates from disciplines beyond infosec can go a long way to address the widening cybersecurity skills gap, says industry veteran Javvad Malik. Continue Reading
By
- Mekhala Roy
Answer 20 Mar 2018
How can the CISO become a business enabler?

For a cybersecurity program to be effective, CISOs must be viewed as business enablers. Kudelski Security's John Hellickson offers tips on how CISOs can make the transformation. Continue Reading
By
- Mekhala Roy
Feature 19 Mar 2018
Cybersecurity trend forecast: Streamlined, simplified security

In this SearchCIO Q&A, Javvad Malik discusses why streamlining infosec processes is becoming a top cybersecurity trend and how new tech influences the infosec industry. Continue Reading
By
- Mekhala Roy
News 16 Mar 2018
Ex-Equifax CIO's insider trading indictment a red flag for IT execs

A former Equifax CIO has been indicted for insider trading following the company's 2017 data breach. Will it force IT execs to reexamine the importance of proper breach response? Continue Reading
By
- Ben Cole, Executive Editor
Blog Post 15 Mar 2018
AI's exponential curve: More from my interview with ISACA's Rob Clyde

I recently talked about the use of AI in the enterprise with Rob Clyde, vice chairman of the board of directors at ISACA, an organization focused on IT governance. The conversation focused on a new ... Continue Reading
By
- Nicole Laskowski, Senior News Director
Blog Post 28 Feb 2018
Unlockable iPhones, leaked code among Apple's security woes

Security on Apple devices might not be as impenetrable as many thought. Forbes reported this week that Cellebrite, an Israel-based vendor and major U.S. government contractor, is now able to unlock ... Continue Reading
By
- Brian Holak
Feature 28 Feb 2018
New tech creates new attack vectors, cybersecurity vulnerabilities

CISO John Germain explains how tech like AI and IoT are revolutionizing business -- and creating new cybersecurity vulnerabilities as data protection is left on the back burner. Continue Reading
By
- Ben Cole, Executive Editor
Answer 28 Feb 2018
Is end user training essential to data loss prevention program success?

Regulations like the GDPR promise to enforce stricter data protection rules. While a data loss prevention program can help, it requires end-user training to ease adoption. Continue Reading
By
- Mekhala Roy
News 27 Feb 2018
DLP implementation: Partner with the business for success

Data loss prevention strategies help prevent unauthorized disclosure of sensitive information. For a DLP strategy to be successful, however, business-wide buy-in is required. Continue Reading
By
- Mekhala Roy
Feature 27 Feb 2018
Tech, growing data sets complicate enterprise cybersecurity strategy

Emerging tech has grown companies' data sets and made IT environments increasingly complex. As IT capabilities evolve, enterprise cybersecurity strategy is struggling to keep up. Continue Reading
By
- Mary K. Pratt
Feature 23 Feb 2018
Cybersecurity's shortage of skills leaves IT projects vulnerable

A recent study found that as IT projects proliferate, cybersecurity's shortage of skills is leaving tech vulnerable. Analyst and study author Jon Oltsik explains in this Q&A. Continue Reading
By
- Mekhala Roy
Tip 19 Feb 2018
How to prep for the GDPR breach notification rule

As companies prep for GDPR compliance, its breach notification rule is making waves. Csaba Krasznay, security evangelist at Balabit, discusses how to prep for Article 33 of GDPR. Continue Reading
By
- Mekhala Roy
News 16 Feb 2018
CISO responsibilities: Building a mission-based cybersecurity program

'Vanquish the enemy you can see ... then prepare for the next engagement.' Brooks Brothers' Phillip Miller gives fellow CISOs new ways to think about a cybersecurity program. Continue Reading
By
- Mekhala Roy
Opinion 01 Feb 2018
Fred Cohen on strategic security: 'Start with the assumptions'

Cohen is a globally recognized expert in information protection and cybersecurity. Since coining the term 'computer virus,' he has remained a pioneer in information assurance. Continue Reading
By
- Marcus J. Ranum
Feature 01 Feb 2018
GDPR breach notification: Time to focus on the requirements

Some large U.S. companies have been working behind the scenes on GDPR requirements for more than a year, but there's strong evidence that many have not been as diligent. Continue Reading
By
- Steve Zurier, ZFeatures
Feature 01 Feb 2018
David Neuman: The CISO position and keeping the cloud safe

The Rackspace CISO joined the enlisted ranks in the Air Force, eventually becoming an officer with global responsibilities before moving to the private sector. Continue Reading
By
- Alan R. Earls
Feature 01 Feb 2018
CISOs map out their cybersecurity plan for 2018

What's on the short list for enterprise cybersecurity programs in the coming year? As attack vectors increase -- think IoT -- we ask information security leaders to discuss their plans. Continue Reading
By
- Mary K. Pratt
Opinion 01 Feb 2018
Data protection compliance costs less than noncompliance

Smaller companies -- with fewer than 5,000 employees -- in particular may be hit hard by GDPR requirements and other data compliance hurdles. A new report does the math. Continue Reading
By
- Kathleen Richards
News 31 Jan 2018
Ransomware outbreak threat calls for backup and DR strategy

IT departments deploy a range of data restore approaches to mitigate the risk of a debilitating ransomware attack. Time is of the essence, however. Continue Reading
By
- John Moore, Industry Editor
Feature 01 Dec 2017
John Germain lands the new CISO position at Duck Creek

Serving the technology needs of the property and casualty insurance industry means keeping a weathered eye on risk profiles, enterprise software and emerging threats. Continue Reading
By
- Alan R. Earls
Feature 01 Nov 2017
Are security operations centers doing enough?

SOCs are maturing, but organizations facing the increased threat landscape understand that improving their effectiveness must be a priority in the year ahead. Continue Reading
By
- Steve Zurier, ZFeatures
Feature 02 Oct 2017
Agnes Kirk on the role of CISO, Washington's state of mind

A state CISO champions innovation for Washington, from early development of a single sign-on system to leadership of the new Office of Cyber Security. Continue Reading
By
- Alan R. Earls
Opinion 02 Oct 2017
No customer data leaks? Companies look down the rabbit hole

When Yahoo finally disclosed a massive 2014 data breach to up to five hundred million affected account holders in September 2016, some already had legal representation. Continue Reading
By
- Kathleen Richards
Opinion 01 Sep 2017
From security product marketing to CEO: Jennifer Steffens

The CEO of a global pen tester used to work for the New York Yankees. Find out how Jennifer Steffens went from sports marketing to head of a security service provider. Continue Reading
By
- Marcus J. Ranum
Feature 01 Sep 2017
Why WannaCry and other computer worms may inherit the earth

A vast majority of APT attacks and malware delivery happens via spear phishing. But worms have always had a place in the toolkit when the delivery method fit the mission. Continue Reading
By
- Adam Rice
Feature 01 Sep 2017
HTTPS interception gets a bad rap; now what?

Should products intercept Transport Layer Security connections to gain visibility into network traffic? A new study by researchers and U.S.-CERT warn against it. Continue Reading
By
- Kathleen Richards
Opinion 01 Sep 2017
A damaging spring of internet worms and poor performance

Security is a hot topic for media outlets that report on stock markets as companies founder on corporate earnings. The financial fallout of global malware is a call to action. Continue Reading
By
- Kathleen Richards
Feature 14 Aug 2017
Mitigating security risks posed by emerging tech: Expert advice

Companies are in hot pursuit of the benefits offered by cutting-edge technologies, but mitigating security risks often gets scant attention. CIOs need to change that. Here's how. Continue Reading
By
- Mary K. Pratt
Feature 01 Aug 2017
Deborah Wheeler lands role of CISO at Delta Air Lines

The new CISO at Delta Air Lines earned her wings by sticking with security from the start. As the airline industry faces new challenges, Deborah Wheeler takes on a leadership role. Continue Reading
By
- Alan R. Earls
Report 01 Jun 2017
Report: Threat hunting is more SOC than intel

Threat hunting is driven by alerts with less emphasis on cyberthreat intelligence, according to researchers. Yet 60% of those surveyed cited measurable security improvements. Continue Reading
By
- Kathleen Richards
Feature 01 Jun 2017
Experian's Tom King tackles role of CISO from the ground up

An early career as a geologist helped the veteran financial services CISO thrive in the security field. The CISO role is now broader than technical functions, he says. Continue Reading
By
- Alan R. Earls
Feature 01 May 2017
Is threat hunting the next step for modern SOCs?

The emergence of threat hunting programs underscores the importance of the human factor in fighting the most dangerous and costly security threats. Continue Reading
By
- Steve Zurier, ZFeatures
Feature 01 May 2017
Polycom CISO focused on ISO 27001 certification, data privacy

Tasked with security and compliance, Lucia Milica Turpin watches over internal systems and remote communications customers entrust to the video conferencing company. Continue Reading
By
- Alan R. Earls
Feature 01 May 2017
Challenging role of CISO presents many opportunities for change

With some reports showing incredibly short tenures, new CISOs barely have time to make their mark. The salaries are good; the opportunities for the right skills, unlimited. Continue Reading
By
- Kathleen Richards
Opinion 01 May 2017
CISO job requires proven track record in business and security

In the security field, certifications and degrees are never a substitute for on-the-job experience. For women in security, the challenges may be even greater. Continue Reading
By
- Kathleen Richards
Feature 03 Apr 2017
Politics of cyber attribution pose risk for private industry

Why nation-state attribution plays a major role in the U.S. government's willingness to share cyberthreat intelligence with private-sector companies. Continue Reading
By
- Adam Rice and Mark Maunu
Feature 03 Apr 2017
In her new role of CISO, Annalea Ilg is curious, driven and paranoid

The vice president and CISO of ViaWest, Ilg is tasked with keeping the IT managed service provider and its cloud services secure. Continue Reading
By
- Alan R. Earls
Opinion 03 Apr 2017
Outsourcing security services rises as MSSPs focus on industries

Despite increasing levels of specialization, managed security service providers often don't understand the business you're in. That may be changing. Continue Reading
By
- Kathleen Richards
Opinion 01 Mar 2017
AI or not, machine learning in cybersecurity advances

As more companies promote machine learning and artificial intelligence technologies, chief information security officers need to ask some tough questions to get past the hype. Continue Reading
By
- Kathleen Richards
Video 30 Nov 2016
The impact of mobile technology on business operations

The impact of mobile technology on business is becoming more evident as mobile computing moves to take over the enterprise. Continue Reading
By
- Christian Stafford, Editorial Assistant
Opinion 17 May 2016
IoT data security and privacy starts now for CIOs -- and educators

IoT data security and privacy is racing to the forefront of CIO agendas. Just ask employees whose companies have doled out fitness wearables, says Niel Nickolaisen. Continue Reading
By
- Niel Nickolaisen, O.C. Tanner Co.
News 01 Dec 2014

Security licensing models hamper enterprise security

Onerous product-licensing terms imposed by security vendors raise the risk of shadow IT and threaten enterprise security, according to information security managers. Continue Reading
News 30 May 2014

CIOs trumpet top-down, proactive digital enterprise security

In today's digital world, where consumers are increasingly connected and data is the new currency, enterprises must take a proactive security stance. Continue Reading
News 04 Jun 2012

Social media tips and other helpful lists

In this week's roundup, we have a list made up primarily of lists -- how meta! Included are social media tips and a general how-to on being a good CIO. Continue Reading
News 18 May 2012

Even a minor lapse in security protocol can lead to major costs

When security protocols are neglected, data isn't the only loss. A breach in Utah cost the state CIO his job and possibly his reputation. Continue Reading
News 28 Apr 2012

Promoting innovation, from boss-less offices to tweaking big data

This week's roundup of tidbits from the Web includes ways of promoting innovation, as well as talent in the workplace. Continue Reading
News 23 Mar 2012

Spring is here, and innovation is in the air

In this week's roundup of news and notable bits from around the Web, spring brings thoughts of innovation. Continue Reading
News 16 Mar 2012

Siri, find me a good lawyer

In this week’s roundup, a legalpalooza: Yahoo sues Facebook, someone sues Siri and a lawyer slowly backs away from her Pinterest boards. Continue Reading
News 15 Mar 2012

How big data improves an information security strategy

A security guru discusses new ways of looking at the intersection between big data and an information security strategy. Continue Reading
News 03 Mar 2012

Security woes and a different kind of Net threat

We're feeling a little vulnerable this week. Maybe it's because our cache of tech bits is a little heavy on security issues. Continue Reading
News 28 Feb 2012

Data loss statistics: Emerging culprits

Social networking, cloud computing and mobile technology create business opportunities. But data loss statistics show these advances create risks too. Continue Reading
News 01 Feb 2012

Who's the 'insider' security campaigns target?

Can CIOs learn anything from a security campaign launched by the military more than 60 years ago? Continue Reading
News 05 Jan 2012

Re-evaluating endpoint security tools

Has technology advanced to the point that some endpoint security tools -- and the staff needed to support them -- will go away? Continue Reading
Definition 07 Mar 2011
control framework

A control framework is a data structure that organizes and categorizes an organization’s internal controls, which are practices and procedures established to create business value and minimize risk. Continue Reading
By
- TechTarget Contributor
News 25 Jun 2010

Cloud location: Why it's important to know where your data resides

The Internet may be everywhere, but experts say cloud location is important to consider. Find out why. Continue Reading
News 16 Apr 2010

Don't be a horror story! Why social media policies matter to the CIO

Social media policies are crucial in the age of Facebook and Twitter, where security and compliance risks abound. How can the CIO avoid social media notoriety? Continue Reading
Tip 11 Mar 2009
Cost reduction tips for your strategic sourcing contracts

CIOs should revisit their strategic sourcing contracts and work closely with their suppliers to analyze current spending and achieve maximum cost reductions. Continue Reading
By
- Vince Pultorak
News 08 Aug 2007

Second Life a security risk for businesses, Gartner cautions

Companies risk damage to their brand and reputation, as well as potentially serious security breaches by engaging in activities in unmoderated virtual worlds such as Second Life, according to Gartner Inc. Continue Reading
News 11 Jul 2007

Blog: Data loss rarely leads to ID theft, or does it?

A new report suggests that lost or stolen data is rarely used to commit identity theft. Oh yeah? Then what are they using it for? Blogger Jeff Kelly takes a closer look at the findings. Continue Reading
News 26 Jun 2007

Homeland Security IT chief blamed for cyberwoes

In response to reports of persistent cybersecurity flaws at the Department of Homeland Security, a top congressional Democrat on Wednesday questioned whether the agency's CIO deserves to keep his job. Continue Reading
News 12 Jun 2007

Retailers face deadline for security standard

Credit card firms are giving merchants until June 30 to comply with the Payment Card Industry Data Security Standard, which is designed to protect users from online theft. Teranet discusses what it had to do. Continue Reading
News 08 Jun 2007

IBM gets into Web security with Watchfire buy

IBM has become the first major player to buy into the Web application security testing space with its offer to buy Watchfire. The deal, which is expected to close later this quarter, would bring in tooling that performs ethical hacking of Web apps based on a database of known vulnerability signatures. Continue Reading
News 23 May 2007

IBM targets threats against Web 2.0 systems

IBM on Tuesday introduced a security offering designed to detect and prevent cyberattacks directed at instant messaging services, Internet voice networks and other Web 2.0 platforms. Continue Reading
News 17 May 2007

Verizon targets security with Cybertrust takeover

Verizon is joining in the consolidation in the managed security services space after agreeing to a deal to acquire Cybertrust for an undisclosed sum. Continue Reading
News 15 May 2007

Data breach costs weigh on TJX 1Q profit

TJX Cos., operator of discount clothing chains T.J. Maxx and Marshalls, said Tuesday its first-quarter profit dipped 1 percent as costs related to a widely publicized breach of customer data offset revenue growth. Continue Reading