Private Security Companies and PSC.1

As follow-up to an earlier posting on this website, and to several requests for more information regarding information and background on the ANSI/ASIS PSC.1-2012: Management System for Quality of Private Security Company Operations standard, our staff would like to direct our readers to an article recently posted by James Schmitt from the Human Analytics group. As reported earlier, members of the Human Analytics group participate often as contributing writers to this website and with a rising interest in our readership of standard related activities and private security companies, Schmitt’s … [Read more...]

Private Security Companies Considering Compliance with PSC.1

by Ben J. Carnevale Recently, our staff has been researching developments related to efforts by both the U.S. Department of Defense and the U.K. Foreign Commonwealth Office to support the creation of a certifiable standard for private security operations. This posting will try to address some of those developments and begin this website’s process to now include these activities as consideration and subject matter encompassed by this website’s   objective to keep our readers informed of all related continuity and compliance requirements affecting their companies where they work and their … [Read more...]

Is Password Recycling Addressed in Your Information Security Metrics?

                              Maria Deutscher, who is a staff writer for SiliconANGLE, recently reported on the results of a new report from Netskope, Inc. reinforcing perhaps much of what our readers already know – e.g. for many - if not most enterprises - cloud security and security metrics of effectiveness and privacy in the cloud remain a “work-in-progress”. Nonetheless, one of those issues of “work-in-process” is bringing attention to the information security related risks surrounding password recycling. However with that being said, this report … [Read more...]

Cyber Security Federal Workforce — Key to Reducing Federal Cyber Security Incident Levels?

In a recent report entitled “Keeping Talent” it was found that the federal cyber security workforce in the U.S. will erode due to fragmented governance and uncoordinated leadership, a complicated federal hiring process, a disconnect between hiring managers and the government's human resource specialists, and more importantly, a lack of qualified and skilled talent to fill these jobs. This report was sponsored and written by the cooperation of the Partnership for Public Service (PPS) and Booz Allen Hamilton groups, and, while it certainly talked of an apparent pending HR risk, of lacking … [Read more...]

FTC Allowed to Proceed with Lawsuit against Hotel Group after Information Security Breaches

This website and its readers are well aware of the risk management challenges and opportunities for companies to make decisions over the growing number of information security breaches related activities. Unfortunately, many of these concerns can easily be lost over these risk mitigation topics for small business firms. Nonetheless, supply chain management dynamics can often force even small business firms to have to pay attention to recent developments in this area of information security enforcement--- and --- it is with this point in mind that our staff focused its attention on the … [Read more...]

2014 US State of Cybercrime Survey Report Now Available

Recently, a report entitled the “2014 US State of Cybercrime Survey” was released and made available to the public.  This survey was co-sponsored by PwC, CSO magazine, The CERT® Division of the Software Engineering Institute at Carnegie Mellon University, and the United States Secret Service.  Cybersecurity leaders from these organizations worked together to evaluate survey responses from more than 500 executives of US businesses, law enforcement services, and government agencies where they identified requirements for effective cyber security processes and procedures and evaluated these … [Read more...]

Cyber Intelligence Sharing Website Newly Launched

Our staff would like to bring your attention to the fact that U.S. retailers have recently joined forces and have launched a website called “Retail Cyber Intelligence Sharing Center”. In order to create a structure for this website and to better address the needs of the retail industry, the R-CISC was developed with input from more than 50 of America’s largest retailers, and in consultation with key stakeholders including federal law enforcement, government agencies and subject matter experts. For the record, the R-CISC is an independent organization, the focus of which is a Retail … [Read more...]

Disaster Preparedness Teams Can Benefit from a Recent World Economic Forum 2014 Risks Report

In an earlier posting on this website, our staff published a story reviewing the consensus for listing the threats of 2013 which impacted many organizations.  In this posting, the point addressed is that very often risks of threats or incidents can impact an organization because of the occurrence of some global size event that would appear to be beyond the scope of an organization’s disaster preparedness planning. With that thought in mind, our staff would like you to be aware of a recently released World Economic Forum report which attempts to size up the impact of some all-too-real … [Read more...]

Information Security Scams This Christmas

With the holiday season upon us once again, our staff would like to focus some of your attention on some information security concerns regarding the likely use of digital devices as each of us try to make our Christmas buying lists and plans for upcoming holiday festivities.  Our point is that for every Santa there is a Grinch, and a cybercriminal is most likely waiting in the wings to turn all that holiday cheer into fast cash as he spreads his scams and malware. To help you stay protected as you search high and low both on and offline for the perfect presents for your loved ones, McAfee … [Read more...]

ASIS International — Invitation to Attend World’s Most Influential Security Events

ASIS International has led the security industry by providing up-to-the-minute education and strategic solutions to professionals around the world.  Both physical and information security professionals have benefited from these offerings for nearly sixty (60) years. Our staff supports ASIS International and encourages our readers to be aware of the following schedule of upcoming seminars and exhibits: ASIS-PAC in Macau, China – December 3-5, 2013 ASIS MIDDLE EAST in Dubai, UAE – February 16-18, 2014 ASIS EUROPE in The Hague, Netherlands – April 1-3, 2014 ASIS NYC in New York, … [Read more...]