Problem solve

Enterprise information security management

• Implementing machine learning to keep Facebook user data safe

  Facebook Director of Security Aanchal Gupta shares how the social media giant is implementing machine learning in security to ensure user data is safe on its platform. Continue Reading

• Facebook cybersecurity: How the company is building a diverse team

  Facebook director of security Aanchal Gupta sounds off on the need for diverse security teams and gives an overview of how the social media giant is working to make it happen. Continue Reading

• CIO uses master data management to speed digitalization

  IMA Financial Group CIO Michelle Vercellino's effort to clean up, protect and govern the firm's data is an important step in the firm's quest for 'data intelligence.' Continue Reading

• Top 2018 cybersecurity trends to watch out for

  A glance at IT news shows cybersecurity trends remain on companies' radar. At the CIO Boston Summit, Cybereason's Jessica Stanford discussed steps to defend against risk. Continue Reading

• Cybersecurity skills gap: Get creative about cyber hiring

  Hiring candidates from disciplines beyond infosec can go a long way to address the widening cybersecurity skills gap, says industry veteran Javvad Malik. Continue Reading

• Is end user training essential to data loss prevention program success?

  Regulations like the GDPR promise to enforce stricter data protection rules. While a data loss prevention program can help, it requires end-user training to ease adoption.Continue Reading

• Security practices don't have to hinder IT speed

  Speed-to-market strategies shouldn't be bogged down by IT security. Here are two steps that will help CISOs adapt governance practices to support IT speed.Continue Reading

• Why aren't there more women in cybersecurity?

  Outmoded stereotypes, not enough female execs -- there are many reasons for the low numbers of women in cybersecurity. Most (but not all) are easily fixed.Continue Reading

• Quest for the best security for containers: Seven steps

  Despite their name, containers are by no means impervious to threats. With their use expected to grow, the time is ripe for determining the best security for containers.Continue Reading

• Loose coupling, tight data access minimize security risks of new tech

  A recent article on biological malware got Niel Nickolaisen thinking about how to minimize security risks in emerging tech. Here are two approaches that will help.Continue Reading

• Mitigating security risks posed by emerging tech: Expert advice

  Companies are in hot pursuit of the benefits offered by cutting-edge technologies, but mitigating security risks often gets scant attention. CIOs need to change that. Here's how.Continue Reading

• Pondering the question of IoT data ownership

  As the use cases for the internet of things continue to expand into various sectors and the benefits of analyzing that data collected from IoT grow, the question of IoT data ownership and access privileges is coming to the fore. But we can't simply ...Continue Reading

• Security of IoT-enabled devices remains low priority for developers

  MIT Sloan cybersecurity expert Stuart Madnick talks about clear and present dangers in an IoT-enabled world.Continue Reading

• Stuart Madnick: Dark Web hackers trump good guys in sharing information

  Organizations are getting better at defending against cyberattacks, says MIT Sloan's Stuart Madnick, but dark Web hackers maintain an edge. He explains why.Continue Reading

• How to handle a data breach: Managing public perception

  When your organization plans out how to handle a data breach, managing public perception should be given special consideration. One piece of advice: Don't play the victim.Continue Reading

• Balancing user experience and mobile data security

  Creating a powerful user experience (UX) is the holy grail of mobile app development, according to SearchCIO columnist and former CIO Harvey Koeppel. But the journey there is fraught with obstacles, including managing and designing apps that ...Continue Reading

• Cybersecurity experts: 'Brittle' security systems need overhaul

  Cybersecurity experts urge enterprises to embrace new tools, including micro-virtualization and intelligence-led security.Continue Reading

• Taming today's cyberthreat landscape: A CIO checklist

  The cyberthreat landscape grows more dangerous by the day. Harvey Koeppel offers a 12-point cybersecurity checklist for CIOs.Continue Reading

• Among threats to information security, human behavior a constant risk

  Among the myriad evolving threats to information security, CIOs can count on one constant: Human error. Niel Nickolaisen offers three best practices for dealing with ourselves.Continue Reading

• Next-generation security in a mobile era

  The early days of mobile computing are gone. Mobile apps continue to grow in number and complexity, and so has industry spend on mobile security, reaching almost $2 billion in 2014. Still, many experts say enterprises are significantly ...Continue Reading

• Next-generation security for a mobile culture: 10 risks, seven pointers

  The number of mobile devices now outnumbers the number of people in the world. Mass mobilization calls for next-generation security tools and some forward thinking on the part of CIOs.Continue Reading

• The new security paradigm

  When it comes to the most high-profile data breaches of the past year -- Target, Home Depot, Sony and J.P. Morgan come to mind -- hindsight is 20/20. Security budgets are increasing in the wake of these massive breaches, and CIOs are employing new ...Continue Reading

• CTO takes on cyberthreats with hybrid security built on risk profiling

  A hybrid security defense begins by ranking potential risks by likelihood and impact, then hiring experts to shore up defenses.Continue Reading

• Automated scripts can cause mobile app security problems

  Part two of SearchCIO's six tips for avoiding mobile security mistakes looks at the limitations of non-human safeguards.Continue Reading

• Top security threats, potential for human error necessitate new tools

  Top security threats, recent fraud cases and the potential for human error have CIOs looking ahead to new security tools, our #CIOchat-ters say.Continue Reading

• Why is 'bring your own encryption' (BYOE) important?

  In this Ask the Expert, Forrester analyst James Staten details the importance of the bring your own encryption (BYOE) fad as a cloud security model.Continue Reading

• 2014 cloud strategies include renewed security focus, business motivations

  2014 is predicted to be the year cloud really goes mainstream. As it does, CIOs will look at security and how services are provisioned in new ways.Continue Reading

• Online security training: How to avoid cybersecurity issues

  Looking to avoid cybersecurity issues? You must first determine who is responsible for online security training. Our #CIOChat participants weigh in.Continue Reading

• Next-generation security trends for 2014 and beyond

  In SearchCIO's recent #CIOChat, participants discuss next-generation security trends and threats, covering cloud takeover, mobile apps and more.Continue Reading

• Forrester to security leaders: Embrace continuous improvement

  Security leaders realize that changing attitudes about data security takes time; continuous improvement can be powerful tool in getting there.Continue Reading

• Former VMware CIO talks top data threats

  Mark Egan, who once cautioned CIOs on the data threats lingering in cloud services, now says his top threats are abroad and in the endpoint.Continue Reading

• Seven steps to building an effective incident response program

  Often undervalued, a well-thought-out incident response program for security breaches gets its due in this tip by Forrester Research.Continue Reading

• Cloud security risks still an issue for CIOs, but change is in the air

  Cloud security risks have been a barrier to adoption for CIOs, but self-education along with enlightened vendor response is easing the move to cloud.Continue Reading

• A CIO's five-point plan for managing endpoint security

  Niel Nickolaisen offers a five-point solution for managing endpoint security for the hyper-connected enterprise -- starting with data governance.Continue Reading

• Building the 'human firewall': A behavioral approach

  Build a 'human firewall' with employee security awareness programs that incorporate straight talk, humor, wit and storytelling.Continue Reading

• Data protection management in a mad, mobile world

  Nothing gives IT headaches like MDM. Read what our Twitter followers had to say about developing a data protection management plan for mobile devices.Continue Reading

• Is the mobile trend here to stay? Readers sound off on BYOD

  Is BYOD a fizzling mobile trend or here to stay? In this CIO Chatter, SearchCIO.com readers weighed in on mobile devices in the workplace.Continue Reading

• Got mobility questions? Join SearchCIO.com for a tweet jam Feb. 27

  Participate in SearchCIO.com's second moderated tweet jam addressing mobility questions and BYOD initiatives Wednesday, Feb. 27.Continue Reading

• Mobile technologies and the cloud raise security concerns for CIOs

  Mobile technologies continue to create a quandary for CIOs. SearchCIO.com readers share their thoughts in this CIO Chatter.Continue Reading

• Mobile innovations vs. BYOD policies: How should the CIO prioritize?

  Some experts suggest CIOs should focus more on mobile innovations and less on BYOD policy. In our latest CIO Chatter, SearchCIO.com readers respond.Continue Reading

• Mobile operations and security specialist makes mobile strategies sing

  Forrester Research analysts outline why a mobile operations and security specialist is essential for an effective, long-term mobile strategy.Continue Reading

• Realities of risk today require a chief business security officer

  The chief business security officer, a new type of security pro, can help bridge the gap between IT security and business initiatives.Continue Reading

• Four priorities in securing the extended enterprise

  The extended enterprise encompasses mobile, social and cloud technology, and requires four decisive security countermeasures, Forrester Research says.Continue Reading

• CEB survey lays out senior IT managers' public-cloud concerns

  In a new survey, senior IT managers name 19 flaws in the public cloud. Five of those flaws stand out, but many believe they all can be overcome.Continue Reading

• A new due diligence checklist for your next software license agreement

  A typical due diligence checklist might not be enough to prepare you to negotiate your next software license agreement. Our expert offers a few items you may want to add.Continue Reading

• Cloud computing identity management standards could push cloud use

  Cloud computing identity management standards are in the works to ensure the open and secure exchange of identities in the cloud.Continue Reading

• Information security program revamp adds outsourcer oversight and more

  Read how one CIO used risk assessment, a dashboard, outsourcer oversight and one-on-one talks to build a robust security program.Continue Reading

• Why CIOs need to get real about identity and access management in 2010

  Changes in business, employee needs and regulatory mandates are reshaping identity and access management (IAM) and giving rise to service providers. Should you sign on with one?Continue Reading

• 10 must-have steps for an effective SMB information security program

  No information security program would be complete without these security tips from the NIST, which has compiled advice just as security threats to smaller businesses are on the rise.Continue Reading

• CIO turns to identity and access management to solve business problem

  Growth and turnover made user provisioning a huge task for business owners and IT here, before a major effort to classify users and deploy an identity and access management system.Continue Reading

• Cost reduction tips for your strategic sourcing contracts

  CIOs should revisit their strategic sourcing contracts and work closely with their suppliers to analyze current spending and achieve maximum cost reductions.Continue Reading

• Network access control: Pointers for getting the knack of NAC

  Network access control, if scoped correctly and deployed thoughtfully, can add a critical dimension to your security architecture.Continue Reading

• Web-based ERP improves productivity, customer satisfaction

  Many larger enterprises are incorporating Web 2.0 into their ERP software to improve collaboration and information sharing among employees and customers.Continue Reading

• VoIP telephone system brings flexibility, accessibility

  VoIP systems can help midmarket executives manage telephone interactions, make salespeople more accessible, improve the customer experience -- and reduce costs, too.Continue Reading

• Blade servers cut costs, aid DR planning

  While blade servers can save companies space and money, they can also be very limiting, according to industry experts. CIOs should weigh the pros and cons before adopting blade technology.Continue Reading

• Disaster recovery still not a priority for most CIOs

  Disaster recovery planning still isn't a priority for many CIOs, who are expected to spend more time fixing current problems than preparing the business for future ones.Continue Reading

• Managed security services stop spam, deliver ROI

  A managed security service provider helped ESL Federal Credit Union reduce administrative costs and free up IT staff time, resulting in high ROI -- not to mention less spam.Continue Reading

• BI Competency Centers tackle cost and legal concerns

  CIOs are investing in Business Intelligence Competency Centers as a formal initiative to develop a self-service environment for creating reports and queries.Continue Reading

• Portfolio management moves into prime time

  Business was booming at MGM Mirage, but the resort and casino operator needed to find a better way to manage its many IT projects. A comprehensive portfolio management strategy turned out to be its best bet.Continue Reading

• Security solutions: Cost-justification guidelines

  CIOs often have trouble justifying the value of security solutions to the business side. ROI expert Tom Pisello offers four tips for cost justifying IT investments.Continue Reading

• Information security metrics that work

  Effective information security metrics can help CIOs better justify their security investments.Continue Reading

• Network security: Where's the ROI?

  When it comes to network security, the CFO is probably certain that it's a big expense with no return. Here's how to determine network security ROI.Continue Reading

• What's the difference between an outsourcing agreement and a service-level agreement?

  What's the difference between an outsourcing agreement and a service-level agreement? If they are different, what are the defining elements of each?Continue Reading

• Top 10 best practices for email archiving

  Regulatory compliance, litigation support and storage management all begin with an efficient e-mail archiving process. Storage consultant Bill Tolson offers 10 detailed best practices for effective e-mail archiving.Continue Reading

• Remote admin cards

  A special card, usually in a PCI form factor, can give you the equivalent of console access via the network -- and help increase security as well.Continue Reading

• Web portals: Big challenges, better ROI

  Information architects need time, patience and good business sense to reap the many benefits of Web portals.Continue Reading

• Examining the TCO metric

  Total cost of ownership (TCO) is defined as the total cost of procuring, using, managing and disposing of an asset over its useful life. This tip takes a closer look at TCO.Continue Reading

• FoundStone's SuperScan 4 lives up to its name

  A review of a free IP scanning tool called SuperScan v4.0.Continue Reading

• How to detect spyware on corporate PCs

  Network and security expert Ed Tittel offers 10 tips for making sure your company PCs aren't plagued by spyware.Continue Reading

• Why IT value management matters

  Identifying key performance indicators to improve predictability has propelled organizations to market leadership status.Continue Reading

• What’s the top ERP solution for insurance companies?

  Looking for ERP solutions to meet the unique needs of an insurance company can be challenging, but you’ll find some ideas in this expert tip.Continue Reading

• Troubleshooting group policies

  This tip explains how to tackle GPO-related issues that are often hard to trace.Continue Reading

• Steps to Success: Identity management

  Identity management is moving up the importance chain, but there are plenty of people who still don't know what it is. What they don't know could hurt them.Continue Reading

• Need to show ROI? Fasten your seatbelt!

  Nothing can make a security pro's blood boil faster than three letters: R-O-I. But there are ways to lower the heat.Continue Reading

• Evaluating ROI for anti-spam initiatives

  Aside from the pure annoyance of having to deal with it, spam causes more damage when it directly affects your ROI.Continue Reading

• A CIO's primer on information security

  How well do the security practices you have in place withstand an attack?Continue Reading