Category Archives: IT Security

I have been looking into Threats, or to be more accurate Top 10 security threats for 2011. I just like Top ten lists! By reading this article I notes’ that much of the weakness lies in the newest thing happening … Continue reading →

One of the  many NIST guidelines that can help to assess, analyze and develop IT security strategies in organization is to use NIST’s Special Publication 800-115 Technical Guide to Information Security Testing and Assessment Recommendations of the USA National Institute … Continue reading →

For some time we have been looking on the National Institute of Standards and Technology (NIST) 800-30, “Risk Management Guide for Information Technology Systems” guidelines. So you don’t have to invent new wheel, I have found example of IT Risk … Continue reading →

This article has been announced years ago though it still has an importance in relation to security threats found on Windows platform. The SANS/FBI have pinpointed these threats included with a report on the top list. Experienced administrators have opportunity … Continue reading →

It looks like some people were thinking about the upcoming years 2012,2013 and what new security threats will appear (apparently it contradicts with Nostradamus predictions but he is not talking about IT Security so I don’t care). I chose to … Continue reading →

What is security control? It’s a technical or administrative safeguard and a counter measures to avoid, counteract or minimize loss or unavailability due to threats acting on their matching vulnerability, i.e., security risk. The institute United States General Accounting Office … Continue reading →

What are vulnerabilities? Vulnerabilities are a weakness in a computer construction or software construction which allows an attacker to gain control or access to network or a computer/s. On the website Network world I come across an article about Top … Continue reading →

The most trusted and the largest source for information security training and security certification in the world SANS institute brings guidelines of 20 Critical Security Controls for Effective Cyber Defense. For those who don’t know SANS Institute was established in … Continue reading →

I have read an interesting article about creating a risk assessment plan in relation to data security. It covers a 5-step plan in order to develop a solid foundation for security strategy. It requires a team assembled to get started … Continue reading →

  A lot of IT Security Framework exists at the moment that can be used in company security. Below wrote simple comparison for each. ISO Family (27001, 17799, 20000) (International Standard Organization’s security management standards) A framework of standards that … Continue reading →