Filter By:

Recent Blogs & Podcasts

Insights

\ Data Protection 



July 21, 2017 | Encryption, Digital Signatures, Certificates, Tokenization
By Aaron Turner, IANS Faculty

 Full Disk Encryption: Some Keys to Success

Full disk encryption is the best way to protect data at rest, but not all implementations are equally secure. In this Ask-an-Expert written response, IANS Faculty Aaron Turner highlights key regulatory and technology issues to consider, and provides tips for getting the deployment right.

Read More »


July 5, 2017 | Data Loss Prevention (DLP)
By Josh More, IANS Faculty

 Tips for Protecting IP When Offshoring to China

Is it possible to offshore manufacturing processes to China while fully protecting corporate intellectual property (IP)? In this Ask-an-Expert live interaction, IANS Faculty Josh More recommends some key contractual, business process and security control changes to put in place to improve the odds.

Read More »


June 19, 2017 | Privacy
By Rebecca Herold, IANS Faculty

 Building a Framework for Data Privacy and Protection in the Cloud

With more and more security incidents originating in the cloud, new data privacy and protection regulations are emerging. Cloud services must establish and maintain effective privacy and compliance programs, while organizations that leverage cloud services need to establish sound frameworks for mitigating risks in their own right. In this webinar, IANS Faculty Rebecca Herold reviews the most common risks cloud services must address and details specific steps organizations can take to prevent breaches and the corresponding penalties.   

Read More »


June 1, 2017 | Encryption, Digital Signatures, Certificates, Tokenization
By David Etue, IANS Faculty

 Key Management: Evolving Best Practices

Encryption is critical, but what is the best way to implement secure key management? In this written Ask-an-Expert response, IANS Faculty David Etue outlines the most common roles and approaches, along with unique risks presented by emerging technologies like cloud access security brokers (CASBs).

Read More »


May 15, 2017 | Data Classification
By Kevin Beaver, IANS Faculty

 Sensible Approaches to Data Classification

Most organizations want to protect their sensitive electronic assets, yet effective data classification programs are all but nonexistent. You certainly can’t secure what you don’t properly acknowledge, and that’s a big reason why many security organizations struggle in this area. In this webinar, IANS Faculty Kevin Beaver details an approach to data classification that involves taking a few basic steps early on and periodically moving the program forward.

Read More »


May 10, 2017 | Authentication
By Aaron Turner, IANS Faculty

 Implementing Contactless MFA across a PKI Environment

Implementing contactless multifactor authentication (MFA) across an entire organization is difficult enough, without the added stress of getting it operational by year end to meet the tight deadline of DFARS compliance. In this Ask-an-Expert written response, IANS Faculty Aaron Turner recommends taking a phased approach to ensure a seamless rollout. 

Read More »


April 13, 2017 | Data Loss Prevention (DLP)
By Ken Van Wyk, IANS Faculty

 Van Wyk: Get a Handle on Your Data

One person's data is another's active content. The intermingling of data and executable content – or “active content” as it’s often called in web application environments – is a problem we haven't solved yet. We’ve applied a bit of duct tape and bubble gum here and there, but the problem persists.

Read More »


March 29, 2017 | Encryption, Digital Signatures, Certificates, Tokenization
By Aaron Turner, IANS Faculty

 Choosing the Right MFA and PKI Solution for a Complex, High-Security Environment

Leveraging multi-factor authentication (MFA) and public key infrastructure (PKI) across a large organization with multiple domains and trust levels can get complicated fast. In this Ask-an-Expert written response, IANS Faculty Aaron Turner goes over all the options and offers advice for minimizing cost, effort, lifecycle management and security issues.

Read More »