Author: Dan Lohrmann, CISO, State of Michigan

World events are suddenly attracting more employees to telework. The headlines say it all. “Oil prices surge…” and “Gas over $4.00 a gallon…” These unprecedented gas prices now have telecommuting back on top of business agendas. Don’t panic (yet) security leaders, but you’d better dust off those mobile worker security plans. (more…)

Author: Thomas Peltier, President, Thomas R. Peltier Associates, LLC

Gap analysis consists of defining the present state, the desired or ‘target’ state and hence the gap between them. In the later stages of problem solving the aim is to look at ways to bridge the gap defined and this may often be accomplished by backward-chaining logical sequences of actions or intermediate states from the desired state to the present state. (more…)

Author: David A. Meunier, CISSP, HISP – President & CISO, Hauberk Consulting, LLC

This is the first part of a two part article outlining the benefits of a well constructed security/risk dashboard program to assist the security leader in communicating to executive management. In part one I will outline the concepts and structure in addition to providing advice, tips and lessons learned. Part two will provide detail on constructing an initial security/risk dashboard, as well as a few other communication tools. Together, both articles will explore a strategy for developing an effective security dashboard program. (more…)