Optimal Security : the Lumension Blog

Gartner recently released a report on operationalizing endpoint security – on how signature-based anti-malware is losing effectiveness in the face of an overwhelming volume of threats. I have a few thoughts about the report’s findings and what organizations can do to better protect their endpoints.
As the Gartner report made clear, signature-based anti-malware is losing its [...]

In general there are few “Facts of Life” that are accepted because there is an abundance of supporting data – hence, they simply cannot be disputed. Below are half a dozen “Facts of Life” I use in my own life that I’m happy to share:
1.      If I smoke cigars or cigarettes it will have a [...]

In May 2009, Aberdeen Group published a research report entitled IT GRC: Managing Risk, Improving Visibility, and Reducing Operating Costs. The study describes the policy, planning, process, and organizational elements that contribute to successful initiatives in the area of IT governance, risk management, and compliance (IT GRC).  I recently sat down with Derek Brink, vice president [...]

Whether you want to admit it or not, social networking is a fact of everyday corporate life. In most companies, the number one social networking application used daily during work hours is Facebook. This is not a fad as it took less than 9 months for Facebook to reach 100 million users and the Apple [...]

Paul Henry, Forensics and Security Analyst, provides his insights in this September Patch Tuesday Security Briefing.

I recently sat down with Brandon Dunlap, Managing Director of Research at Brightfly, to get his perspectives on the biggest challenges around IT risk and how organizations can get better at managing risk. Brightfly is an advisory services firm specializing in the collision between IT operations, information security, physical security, and auditing. The firm conducts [...]

With Microsoft Patch Tuesday right around the corner, life gets even more interesting for IT professionals with the release this morning of a new Zero Day DoS exploit impacting Microsoft FTP server.
This comes on the heels of a more serious issue. Just days ago, an exploit was released that can allow a remote user to [...]

Organizations continue to be plagued by increasing regulations coming from states and federal governments, industry regulations and internal compliance policies.  They are further challenged by the complexities and costs associated with demonstrating compliance while managing the right levels of risks.  I recently sat down with Rob Israel, the CIO of John C. Lincoln Health Network, one of Lumension’s customers to [...]