News, analysis and context on enterprise technology for the CTO
GSA provides many services to federal users, including communications services. They help agencies tap into the best communications industry can offer and does that in ways that can enhance security. One key method is MTIPS, which stands for Managed Trusted Internet Protocol Services (MTIPS). This is a way to help agencies improve their online security with TIC-compliance managed security services. The MTIPS solution complies with OMB's guidance on … [Read more...]
http://www.youtube.com/watch?v=fhttnIOmDp8 We've already established that perfect security is impossibly in cyberspace, especially with the move to the cloud, the consumerization of IT, and the rise of mobile. Still, even with current transformations, IT can still get more secure as it evolves. Recently, HP announced an enterprise security strategy to address these new challenges, which was described in an interview by IDG's Bill Laberis at the HP … [Read more...]
http://www.youtube.com/watch?v=YiPWhaEhOUo Whenever the topic of cloud computing comes up, cloud security isn't far behind. Survey after survey has shown it to be a top CIO concern, but how much of that concern is legitimate? CTOvision's Bob Gourley and Tom Reilly, Vice President and General Manger of Enterprise Security at HP separated myth from reality on cloud security in an interview with IDG's Bill Laberis at the HP Protect 2011 … [Read more...]
To paraphrase Rodney Dangerfield, military theorist John Boyd can't get no respect. The latest attack on the Loopy One, published in Armed Forces Journal, again mischaracterizes the OODA (Observe-Orient-Decide Act) Loop: This notion that there are specific knowable causes that are linked to corresponding effects dominates military thinking and manifests in our drive to gather as much information as possible before acting. This concept was captured by … [Read more...]
Richard Spires, CIO of DHS, provided written testimony on 12 services that they have moved to the cloud. The first service often moved to the cloud is email, which DHS has started by putting FEMA's email to the cloud. They have 8 private clouds already set up, and 3 services in the public clouds. The private cloud services are below: SharePoint as a Service - "We are currently migrating Headquarters and United States Citizenship and Immigration … [Read more...]
In this week's Blog Talk Radio, Bob Gourley and John Dodge talk about the new avenues of attack in the cyber world. In addition, they hit on the #cloudsecurity tweets of the week on Twitter. Highlights of the re-tweets are an interview with CIA CTO Gus Hunt and some thoughts on moving from a private cloud to a public cloud. The two also hit on topics like HP's integrated suite of security tools and the importance of testing applications, especially web … [Read more...]
http://www.youtube.com/watch?v=2rF3Q2ewa4E In an interview at the HP Protect 2011 conference on Monday, September 12, 2011. Bob Gourley and Tom Reilly, Vice President and General Manger of Enterprise Security at HP, discussed two studies on cyber crime from the Ponemon Institute and Coleman Parks. The median cost to an organization due to cyber attack was $5.9 million a year, 56% more than last year, and the time it takes to resolve the attack … [Read more...]
A friend who is a former Representative and a respected advisor of many senior politicians recently asked me for some thoughts on cyber legislation. In general, people ask my thoughts because of time I've spent working strategic cyber issues in the Cyber Conflict Studies Association (CCSA) or because of my history at DoD's Joint Task Force for Computer Network Defense (JTF-CND) or perhaps because as a techie and a writer I try to track technological … [Read more...]
John Dodge (@thedodgeretort) and Bob Gourley (@bobgourley) review the Enterprise CIO Forum's (@ECIOForum) top 10 Cloud Security Tweets of the week in the following podcast. Tweets selected by John included: zdnet: Will cloud security ever be sufficient? http://t.co/vLJjhFAY cloudsa: (ISC)² and The Cloud Security Alliance Expand Cloud Security Offerings to their Memberships... http://t.co/c80DntRK chrispirillo: How secure is … [Read more...]
http://www.youtube.com/watch?v=Of3CfNJ84oQ Bob Gourley and HP's Andrzej Kawalec, CTO of Enterprise Security continued to discuss emerging security issues at the HP Protect 2011 conference on Monday, September 12, 2011, exploring problems with traditional approaches to enterprise security. Andrzej began by defining the customary enterprise security approach. We've been taking a very reactive stance to cybersecurity, focusing on responding to … [Read more...]