Setting and Achieving Realistic Information Security Program Goals for 2016

Chris Bedel : Mar 30, 2016

Uncategorized

I love this article by Kevin Beaver on goals for your ISP.  Although it's already the end of March, it is applicable at any time of the year because it discusses:

  1. Focusing on continuous improvement in information security.  It can't happen overnight, and you are never truly "there".  Keep asking  yourself: "How can we be better tomorrow than we were yesterday?"
  2. Prioritizing your goals.  Remember - If everything is important, then nothing is.
  3. Taking a pragmatic approach.  Kevin mentions being reasonable several times in his article.  Align your ISP goals with business goals and make sure they are feasible.

Read More on the Author's Website...
Is it Time to Take the Organization of Your Information Security Program to the Next Level?

Is it Time to Take the Organization of Your Information Security Program to the Next Level?

Chris Bedel : Sep 19, 2016

The Information Security Program at Banks and Credit Unions is getting to be a pretty complex thing. Policies, audits, reviews, board reports,...

Uncategorized
Read More

Inside The Competitive Testing Battlefield of Endpoint Security

Chris Bedel : Jul 20, 2016

I'm honored to be quoted in "Final Analysis" section of Kevin Townsend's article this week at SecurityWeek.com, especially with the level of quality...

Uncategorized
Read More
Implement Practical Policies and Processes to Improve Your Cyber Security

Implement Practical Policies and Processes to Improve Your Cyber Security

Chris Bedel : Apr 24, 2017

Lately, we've been running into cyber security programs and information security programs (ISP) that are elaborate, lengthy, complex, and written...

Uncategorized
Read More