-
10 Aug 2009Security focus in 6 out of 11 growing certifications
More good news on the security front. Although I'm a strong believer that certifications aren't everything (they're really only a small part of information security career success), there's good news as well. More than half of the IT-centric certifications that have grown in value (i.e. jump in salary) over the past three months are security certifications. Love the statement by David Foote "[Companies are] starting to look at security as ...
Continue Reading... -
07 Aug 2009
SaaS replacing the OS?
I just saw a press release from a company claiming that their SaaS solution "Makes the OS Obsolete!".Remember back in the mid-90s when the thin-client 'NC' (network computer I think it was called) was going to take the world by storm? Funny how the more things change the more they stay the same......
Continue Reading... -
06 Aug 2009
A must-attend show for technology professionals
If you give presentations at work, for clients, at conferences or seminars, or you just want to become a better presenter overall you have to check out a show that's coming to my hometown in October called PowerPoint Live.I haven't attended any of their previous shows but I purchased their handouts and presentation content from last year's show and it's great stuff. Now, this year, I'm going to force myself ...
Continue Reading... -
06 Aug 2009
Bob Varsha and I
I know, this is more of a Facebook-type post but since I don't hang out there too much I thought I'd post it here. Here's a pic of me and Bob Varsha - the voice of Formula 1, Barrett-Jackson Auctions, etc. on the SPEED channel. I met him at a motorsports event here in Atlanta recently. Really nice guy. For you NFL fans, that's Michael Jenkins of the Atlanta Falcons ...
Continue Reading... -
05 Aug 2009
Why you need to read privacy policies
In case you haven't heard, apparently our Imperial Federal Government was at it again with their recent draconian privacy policy on the Cash for Clunkers web site. Here's a snippet of the policy:"Any or all uses of this system, any or all uses of this system and all files on this system may be intercepted, monitored, recorded, copied, audited, inspected, and disclosed to authorized CARS, DOT, and law enforcement personnel ...
Continue Reading... -
31 Jul 2009
Are “power users” keeping you from doing more important things?
Here's a great definition of the term power user for you:Pc Operators Who Eventually Run, Unload, Screw up, Erase, and Remove Software*Sound familiar!?*I can't remember who I got this from...I cut out of a presentation I attended years and years ago and it's been sitting on my desk ever since. It may have been Laura Chappell or someone else who presented at Novell's Brainshare conference back in the mid-90's. Sorry ...
Continue Reading... -
30 Jul 2009
GAO reports federal infosec failures – seriously?!
So the people in our own Imperial Federal Government has failed yet another security test!? You know, the same people who force us (at gunpoint if necessary) to become secure and stay secure.Some highlights:Twenty of the 24 agencies had inadequate information security controls that were considered a material weakness or a significant deficiency.A 200% increase in security incidents over the past three years...It's a "major management challenge"...even with an unlimited ...
Continue Reading... -
27 Jul 2009
My latest security content
Here's my latest information security article I wrote for SearchSMBStorage.com you may be interested in:Making sense of regulatory compliance and data storage for SMBs As always, be sure to check out www.principlelogic.com/resources.html for all of my information security articles, podcasts, webcasts, screencasts, my Twitter updates, and more....
Continue Reading... -
27 Jul 2009
Imagine if your security plan looked like this
Imagine if you tried to force an Obamacare-eqivalent information security plan on management (see chart below). How would they respond. They'd probably tell you to go pound sand.And now anyone against such a big goverment idea can't speak out about it. I wonder how much longer I'll get to do my rants in a forum such as this. Wow, where's our freedom going? Is anyone listening...? This isn't about healthcare. ...
Continue Reading... -
27 Jul 2009
Good business impact analysis template
Happy Monday! I just came across this sample business impact analysis template you can use to fine-tuning your DR plan. You do have a DR plan, right?...
Continue Reading...
Resources
Client Testimonials
“A business associate referred our company to Principle Logic when we were seeking a resource to perform vulnerability /penetration testing for our external and internal networks. We found Kevin Beaver to be professional, well informed, and easy to work with. His testing did not disrupt our networks, and his progress updates were timely.
His final report was very thorough and included security recommendations for our network environment. The executive leadership was so impressed with Kevin’s security expertise, they have extended their agreement to continue to perform periodic testing. We highly recommend Kevin Beaver and Principle Logic as a resource for network security testing.”
(IT managed services firm)
I’ve written/co-written 12 books on information security including:
