Optimal Security : the Lumension Blog

The appointment of Howard Schmidt as the nation’s new cybersecurity coordinator is good news. Howard is one of the leading authorities on information security, and he has years of experience following security issues, threats and technologies. I know Howard and I am certain he is qualified to head up the country’s efforts to improve cybersecurity.
But [...]

We’ve been discussing how unprepared organizations in the U.S. are for cyber attacks, and now there’s new research that backs up these concerns and illustrates the inherent weaknesses that must be addressed if we’re to adequately safeguard our information and vital systems.
A new Ponemon-Lumension survey on the worldwide state of the endpoint shows that companies [...]

October was National Cybersecurity Awareness month. What did this initiative accomplish? Not much, I’m afraid. The fact that a lot of people in the private sector don’t even know it was Cybersecurity Month speaks to the problems we face in ensuring that people take cybersecurity seriously.
We still don’t really understand the value of cybersecurity and [...]

We could all learn a thing or two about developing an effective cyber security strategy from the government of Singapore. I was recently in Singapore to do a keynote for Singapore GovWare on the Changing State of the Endpoint and, while I was out there, I witnessed something interesting the Singapore government was doing to [...]

Gartner recently released a report on operationalizing endpoint security – on how signature-based anti-malware is losing effectiveness in the face of an overwhelming volume of threats. I have a few thoughts about the report’s findings and what organizations can do to better protect their endpoints.
As the Gartner report made clear, signature-based anti-malware is losing its [...]

To help facilitate a open dialogue, collaboration and co-innovation, we launched a new online customer community called Lumension Connect.

The recent attacks on U.S. and South Korean IT infrastructure has once again raised awareness around national cybersecurity issues here in the States. While I certainly agree with my security colleagues that it is high time that President Obama finally appoint a cybersecurity czar to head up the overarching public-private initiatives that have been promised, [...]

As those of us in the security industry anticipate the soon-to-be-appointed Cybersecurity Czar, I took some time to pull together my thoughts on his/her first 100 days in this newly-created role and the critical first steps that I’d recommend be tackled in those first 100 days, to ensure success.
While I’ve been pretty vocal on the [...]

A Q&A with Pat Clawson and Mike Jacobs
As the nation’s cyber defenses continue to face attack by sophisticated, well-organized efforts to disrupt vital systems and steal critical, confidential information, our government is facing greater pressure to create a governing body that can establish and enforce mandates to protect critical networks and systems. Cyber criminals have graduated [...]

It didn’t take a long study of the show floor at this year’s RSA conference to find that the security vendor community has left the big picture themes of security conferences of the past in the rear-view mirror. Clearly, there was no major new product category such as a NAC or a DLP or an [...]