Asset Management

What’s In A Name?

A trick I learned in the ’80’s . . . Probably saved me . . . and the teams I served . . . thousands of hours! Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . Naming goals and projects is a basic practic...

The Four Basic Truths of System Security

System Security and Cybersecurity are not the same thing. . . Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . Regarding “information security,” the last thirty years have seen an evolution of frameworks, laws, and ...

The Changing IT Landscape and Endpoint Detection and Response (EDR)

Threats are changing, EDR can help us adapt . . . Today’s advanced persistent threat (APT) understands that the IT landscape has changed. In the post-COVID age, more and more organizations have adopted some form of work from home. While WFH offers many convenience...

Managing Software Supply Chain Risk

Software Bill of Materials (SBOMs) are becoming more and more important. . . We are all very familiar with one aspect of the software supply chain – updates. New features, bug fixes, and performance upgrades are a regular occurrence to any device’s lifecycl...

The AIO’s Impact on Technology Planning Movie

Dan is joined by a Panel to discuss the FFIEC’s New AIO Guidance and how it may impact Technology Planning in the future.

Zeroing in on VPN Security

Has the security effectiveness of VPNs passed? Another Technical Article by Tanvee Dhir! Why under scrutiny? VPNs (Virtual Private Networks) have been a cardinal piece for secure internet browsing for decades. They offer a secure and encrypted tunnel to transfer your d...

New Chinese Law Highlights Disclosure Debate

Questions about China’s new disclosure laws only highlight the uncertainty about disclosure in general… An article review. China recently made waves in the security world by announcing a new set of data security laws, one of which has added new fuel to a lo...

A Network is a Network . . . NOT!

Four Conditions … …For Why a Network Can be Anything But a Network! Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . I have to admit that infotex is being called into engineering meetings with larger orga...

Pegasus Making You Mega-Sus?

If Zero days need Zero clicks, are there any secure devices in the mix? Tanvee Dhir explores the Pegasus spyware. Another technical post, meant to inspire thought about IT Governance . . . . Introduction Over the past couple of weeks, we have seen multiple stories reg...

An Overview of the FFIEC Architecture, Infrastructure, and Operations Booklet

Our Lead Non-Technical Auditor takes a look at the new AIO Guidance… Architecture, Infrastructure, and Operations (AIO) is the latest booklet released by the Federal Financial Institutions Examination Council (FFIEC) in their line of IT Examination Handbooks. It i...

Asset Management

What’s In A Name?

The Four Basic Truths of System Security

The Changing IT Landscape and Endpoint Detection and Response (EDR)

Managing Software Supply Chain Risk

The AIO’s Impact on Technology Planning Movie

Zeroing in on VPN Security

New Chinese Law Highlights Disclosure Debate

A Network is a Network . . . NOT!

Pegasus Making You Mega-Sus?

An Overview of the FFIEC Architecture, Infrastructure, and Operations Booklet

CATEGORIES

infotex

MANAGING TECHNOLOGY RISK

SERVICES

EDUCATION

COMPANY

CONTACT

SIGN UP FOR OUR BLOG

As part of infotex‘s service to our clients, find “non-mainstream” articles about relevant security issues.