Find Resources & Connect with members on topics that interest you.

AI - Acquire and Implement

PO - Plan and Organize

DS - Deliver and Support

Please sign in to see your topics.

You must be logged in to join this group.

CyberSecurity

Share knowledge about CyberSecurity with other ISACA members and idenfity and discuss issues that need more guidance from ISACA. Collaborate, make connections and learn how to keep your organization safe from Cyber risks.

ISACA members can participate by clicking on the “Join this Community” button. You must be signed into the site. Set your alerts to be notified of new discussion activity within this community. Not an ISACA member? Join now!

 
This Topic Has:
2348 Members
7 Online
17353 Visits

Community Leader

Melody

Melody

Title: Service Area Manager / Senior Managing Consultant

Badge: Energizer

 

NEW! Activity Badges

Badges help others understand your level of community activity and your reputation as a contributor within the Knowledge Center. Learn More.

Discussions: 105 total

Must be a Topic member to contribute
View All »
Looking at the discussion “US-CERT lists the top targeted high risk vulnerabilities” focussed my mind on some of the differences between Information Technology and Operational Technology in the security vulnerability area. ISACA Sydney Chapter, last week,...
Bruce Hunter | 5/3/2015 11:50:08 PM | COMMENTS(6)
QUESTION: How can we get our organizatiuons to be more proactive with patches ? Once more, unpatched vulnerabilities allow malicious actors entry points into a network. On 30 April 2015, US-CERT released a list of top 30 most targeted vulnerabili...
M.Lambert | 4/30/2015 2:16:17 PM | COMMENTS(6)
At RSA Conference 2015, speakers at an (ISC)2 panel released these projections. Will ISACA and ISACA Chapters answer to the training and certification demand ? read more: http://searchsecurity.techtarget.com/news/4500244707...
M.Lambert | 4/30/2015 6:30:22 AM | COMMENTS(1)
Watch this video: http://ec.europa.eu/avservices/video/player.cfm?ref=I102063 Read this article: http://thehill.com/policy/cybersecurity/240363-cyber-crime-officially-a-top-eu-security-concern#.VUFlOtl1GMN.linkedin Share your thoughts ...
M.Lambert | 4/29/2015 7:19:10 PM | COMMENTS(0)
ISACA has just announced a new portfolio of CSX training and certifications for professionals looking to build their cybersecurity careers and for organizations looking to identify and hire employees with verified skills.  This portfolio is the first to c...
Tammie111 | 4/29/2015 12:45:03 PM | COMMENTS(23)
Every component of the architecture may constitute a vulnerability. read more http://www.technologyreview.com/news/537031/the-hackers-new-weapons-routers-and-printers/
M.Lambert | 4/29/2015 8:17:30 AM | COMMENTS(0)

Documents & Publications: 68 total

Must be a Topic member to contribute
View All »
Books
Posted by ISACA 3 days ago
Provides an overview of CSX as compared to other organizations as of 18 April 2015 and may not reflect items added or removed after that date.
Posted by Kim091 4 days ago
Books
Posted by ISACA 17 days ago
This document provides a governance perspective on Cybersecurity. It provides insights on many aspects that are often overlooked including human faqctor, processes, etc.
Posted by M.Lambert 24 days ago

Events & Online Learning: 4 total

Journal Articles: 67 total

Volume 3, 2015
by Roberto Puricelli, CISM
In recent years, numerous cases of advanced persistent threats (APTs) and data breaches have been seen, with those involving the largest, most high-profile enterprises garnering the most media attention.
Volume 3, 2015
by Steven J. Ross, CISA, CISSP, MBCP
Every now and again, I like to take a poke at standards, just to see what makes them work. Under consideration here is the cybersecurity framework published by the US National Institute of Standards and Technology early in 2014.
Volume 2, 2015
by Dan Shoemaker and William Arthur Conklin | Reviewed by Dauda Sule, CISA
Cybersecurity: The Essential Body of Knowledge is based on the US Department of Homeland Security’s compendium of best practices.
Volume 2, 2015
by Steven J. Ross, CISA, CISSP, MBCP
I did a Google search on the word cyber and was told there are 467 million references to that term.
Volume 2, 2015
by Larry G. Wlosinski, CISA, CISM, CRISC, CAP, CBCP, CDP, CISSP, ITIL V3
Information security events that affect cloud systems are occurring with no end in sight, so it should be no surprise that the cloud should be treated as a nonsecure environment with numerous threats and concerns.
Volume 1, 2015
by Tieu Luu
In November 2013, the US Office of Management and Budget (OMB) issued memorandum M-14-03 requiring all federal departments and agencies to establish an information security continuous monitoring (ISCM) program.

Wikis: 2 total

Blog Posts: 17 total

Data Privacy in today's world has crossed over from a requirement dependent on one agency or organization to be the global phenomenon.  Today the data traverses across the countries as well as continents at the speed unimaginable in past. In a flash of se...
Posted By : Mayank | 0 comments
  Rob Stroud is the New York based Vice President of Strategy and Innovation at CA Technologies and is the current President for the 2014-15 administrative term.  I caught up with Rob in Australia when he visited Canberra in June 2014...
Posted By : Rob Hanson | 2 comments
I saw Garry at the Sydney Chapter’s successful Strategic Planning event in July 2014.  He was animated and gregarious during the evening’s cocktail event and it felt good to see him again and catch...
Posted By : Rob Hanson | 0 comments
Agile technique in software development has been around for quite some time. There have been efforts to adopt the agile techniques for strategic planning, alignment and execution. Following are some of the relevant articles/blog posts in this area. The to...
Posted By : SA | 0 comments
Having been associated with the BS 7799 from its introduction as a Security Standard, and as a Contributor to the ISO 27001, and the last and final Chair of the ISO 27001 at the Department of Trade and Industry (DTI) I have been a long term supporter, and...
Posted By : John379 | 0 comments
and Become More Secure As a penetration tester I find it TOO EASY to fully compromise an internal network – without finding a single “vulnerability”! I spend most of my time on two types of engagements — PCI projects and penetration tests. The pen test...
Posted By : Stewart141 | 0 comments