Untitled Document
 
Friday, September 05, 2008
 You are here: Home   Search
CISOs, CSOs, Security Professionals, Project Mangers.....Welcome!
CISOHandbook.com is a resource site for CISO's, CSO's, and security professionals. A place where security executives, managers, and practitioners can share ideas, challenges and opportunities associated with developing, participating, or managing Enterprise Security Programs.
 
The site contains metrics, tools, opinions, and most importantly access to CISO's, CSO's, experts, and other professionals in the field of security.  The sole intent of the site is to share information, ideas, tips, and techniques for addressing security issues faced by today's professional. 
 
The content of CISOHandbook.com is free to all however there are some areas that can only be accessed through registering and logging in. Registration is fast, free and easy, so what are you waiting for!

Click Here to Register!

 Print   
The Elephant in the Room
 
  
 
 Print   
Security Opinion

ISMS 101
by Biljana Cerin 

ISMS (Information Security Management System) as outlined within ISO 27001:2005 international standard is not merely a set of documents. It is a methodology for the development of a living information security management system for the assessment and management of information risk associated within an organization.  Though this description may sound like a perfect solution to security managers, the undertaking is not without hardship and challenges.  The amount of time, energy, resources, and political capital necessary to successfully implement an ISMS is fairly substantial. In other words, this effort should not be taken half-heartedly or lightly since a number of “important” people will have skin in the game.
 
 

SMS Body Scan
by Daniel Johnson

Ever pull a muscle sitting at your desk? Or when you first wake up and get out of bed?

Kind of seems unfair doesn’t it, pulling a muscle without even doing anything. In fact, these injuries are due to stress build-up from your work or living environment. Accumulated stress is a growing problem for many people throughout the world.
 
Click here to read the article 
 

Sticks and Stones
by Skye Gentile 

"Sticks and stones will break my bones, but words will never hurt me." An entire industry of self-help books, therapists, and 12-step programs, might argue to the contrary. However, it does raise interesting questions regarding the power of nonverbal communication. The reality is, the majority of your communication with others is nonverbal. Your nonverbal communication can support the verbal message, highlight aspects of the verbal message, or frankly contradict the verbal message (in which case people tend to believe the nonverbal message over the verbal message).
 
 Print   
On-line Security Program Health Tool

Now Available! 
 
On-line Security Program Health Tool
  • Want To See How Your Security Program Measures Up?
  • Want To See How It Compares To Other Organizations?
  • Want to Get The Results Instantly?
  • Oh Yea, It Is Also Free Courtesy Of CISOHandbook.com.
  • Do You Have More Questions? View the FAQ

Click Here To Check It Out!

This practical, easy-to-use tool enables the user to identify the strengths and weaknesses of their security program across six core areas including:

  • Program Strategy
  • Mission And Mandate
  • Roles and Responsibilities
  • Security Policies
  • Security Project Portfolio
  • Training And Awareness
Additionally, your review is benchmarked against all of the other organizations that have used the tool, providing you even more statistical information.

Everyone has asked for it, so here it comes...Don't miss out!
 Print   
CISOHandbook Survey

Participate in Our Study!

We are conducting a survey for research we are performing in the domain of information security. The goal of this reseach is to help identify tools, tips, and techniques that can aid security professionals with the intangible complexities associated with implementing security in the modern organization. In addition, for your time as a survey participant, we will provide you the trended results from the survey in 2008.
 
Click Here to Take the Survey!
 
 Print   
CISO Handbook Announcements
Secureworld Expo article on security program awareness
If we were to tell you that most security programs, in the typical organization, are struggling to define and obtain security success we are sure that you would not be terribly surprised. It is our belief that the primary reason in which our discipline, and specifically most organizational security efforts, are having difficulties is that they do not enlist the rest of the organization to assist with their efforts.   read more...
Secure World Expo article on PCI At
"For many organizations that process credit card transactions, compliance with the standards set forth by the Payment Card Industry (PCI) has been a large component of their security program project agenda. Thousands of security professionals are scurrying to implement the list of controls that are required, which to the credit of the authors of the standard are fairly defined and clear..."   read more...
IT Strategy Center article On Email Encryption At CIO Center
"Last year, an enterprise software survey of large North American and European companies found that one in three planned to invest in email encryption software in the coming year, according to Forrester Research. Another way to look at the survey results, however, is that one-third of these enterprises started the year out without any organized solution to secure the contents of their email..."   read more...
Computer Economics article on Security Regulations
"Organizations today must comply with a greater number of regulations than ever before. Because of the pervasiveness of information technology and the ever-changing nature of security threats, many of these regulations deal with the security of electronic systems and the protection of personal information..."   read more...
Noticebored review of CISO Handbook
"This is a well-written practical guide to building and delivering an information security improvement programme. Presenting sage advice in a consistent manner, the book is a helpful primer for the person tasked by management with ‘fixing information security..."   read more...
Shashdot review of CISO Handbook
"The CISO Handbook: A Practical Guide to Securing Your Company lives up to its title as being a practical guide to security. The book is antithetical approach to the products equal security approach, and takes a pragmatic approach to security..."   read more...
 Print   
CISO News
 Print   
The Unfortunate Truth
 Print   
Coming Soon!
 Print   
 
Premium Sponsors
Traxx Consulting
 Print   
Gold Sponsors
Computer Economics
MIS
IST
S&T
Secureworld Expo
 Print   
Advertise With Us
Advertising Banner
 Print   
 
 
   Privacy Statement  |  Terms Of Use
Copyright (c) 2008 CISO/CSO Handbook