Topic: Strategy

The term “software assurance” is often used interchangeably with the term “software security” to refer to the practices of avoiding and detecting unintentional vulnerabilities during the software development process.

OK, we're in the home stretch - this is the final entry in my 'Security and Disaster Recovery' series. So far we've covered security incidents as disasters, DR for security controls and the security of your DR environment. The last area of consideration is what happens when you need to return to normal operations. The disaster has occurred, you've successfully moved to your DR environment, and things have been humming along. Now the damage to your primary site has been repaired and you're ready to move back - how does this impact security?

Sorry for the delay in updating my blog - for some reason Q2 seems to be the event season, and we've been pretty busy here at RSA supporting HIMSS, RSA Conference, MS TecEd, EMC World and a bunch of other events. Anyway, it's time to continue our discussion of the relationships between security and disaster recovery. In this entry we'll take a look at what needs to be considered to ensure your DR environment itself remains secure.

Recently there has been a lot of chatter about how security teams need to get out ahead of the latest technology advances. There is talk about how cloud computing and virtualization are going to take business to new levels and enable new relationships. On top of this social networking is finding its way into the business environment and raising concern that with mounting financial pressures businesses won’t be prepared to address the increased risks these technologies introduce.

Click to Download/Listen

This week marks the 150th edition of the Speaking of Security podcast. We discuss the recent release of President Obama's 60- day cyber security review and the creation of a "cyber coordinator" position in his administration. We also have news on the 2009 Gartner Magic Quadrant for Security Information and Event Management. RSA/EMC is positioned in the leader's quadrant for the sixth consecutive year.

Click to Download/Listen (7:06)

The Speaking of Security Podcast is providing extensive coverage of RSA news during RSA Conference week. We will be presenting two podcasts. The first is an overview of all the product and solution announcements made by RSA this week. The second (featured here) is a podcast discussing an addition to the authentcation solution portfolio.

Click to Download/Listen (8:45)

This week RSA takes a deeper look into the RSA/Microsoft partnership and explores how the value of building security into business applications can create flexible, consistent and adaptable information security for today's organizations.

I recently visited a customer and we had an in-depth conversation about the use of DLP in a large corporate environment. The customer agreed that the technology surrounding DLP is great and that it would definitely help identify potential rogue employees.  However, the customer also expressed concerns about when is enough…enough.