Technical Security Standards

Keep Your BYOD Policy Updated

An article review. New Device automates iOS Pin Hacking Many companies have Bring Your Own Device policies in place, where employees are allowed to bring their own PCs or mobile devices into the workplace or have business utilities, like email, setup on their personal dev...

Would I love to interview Lenovo’s Incident Response Team!

How much canĀ failure be worth? Dan gets an idea while filling out a “customer satisfaction survey!” Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . So though I tried to comment on Lenovo’s site durin...

Hardware vendors . . . low risk?

NOT! Do we need to do due diligence on our “hardware vendors?” Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . NO NEED FOR DUE DILIGENCE ON HARDWARE VENDORS . . . . . OR NOT???? I finally bought my new lapt...

The 2015 IT Governance Tour!

. . . the Awareness Guru from Indiana . . . Workshops and Conferences in 2015! Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . So last year, for the Infotex Jam, a customer appreciation event we now have every even ye...

The Other Side of the Password Debate

Is Biometrics Ready? Though we disagree with this article, we thought our Clients would appreciate reading an opposing position to our belief that biometrics are still not a cost-effective form of authentication. Ā We believe you still need to increase the tolerance so high ...

The Vulnerability Metrics: They are a Changin’!

The Common Vulnerability Scoring System, used by Cisco, Qualys, and Symantec since 2005, will be moving to its third iteration next year, aiming to make the rankings more objective and add more ratings to increase accuracy. Though infotex does not use this system, we believe...

Security Standards

Dan Hadaway, CISA, CISM, CRISC Managing Partner Dan speaks regularly at various conferences, workshops, and webinars. He has delivered talks for the Community Bankers Association of Illinois, the Indiana Bankers Association, and the Community Bankers Association of Ohio.Ā ...

Technical BYOD Controls for Banks

by Sean Waugh and Dan Hadaway First, let us confess that we used BYOD in the title merely so that we’d catch everybody’s attention. It’s a nice buzzword; who wouldn’t feel like partying after seeing it? But this article is actually about Portable Devices, which is a superset...

Exchange and SQL Server Patches Coming Tuesday!

The upcoming Patch Tuesday will be a big one, according to an article byĀ Gregg KeizerĀ of ComputerWorld. Ā  On Thursday Microsoft announced thatĀ it will patch at least 14 vulnerabilities next week, including four in Internet Explorer (IE), making it three months in a row that ...
IT Governance documentation is both extremely important and extremely difficult to create for IT managers, Information Security Officers, and Compliance Officers alike. infotex has been maturing GLBA and HIPAA templates since before the regulations were law. Our first Accept...