security

March 13, 2013

SECURITY

Becoming PCI certified…is this within reach?

2 min read

Anyone who has been involved with compliance knows that simplifying complexity is the key to maintaining a secure and compliant organization. It’s become quite apparent that sustaining compliance is a marathon, and the journey must be travelled with vigilance. This is not something that is an endpoint or a task, that once accomplished, can be […]

March 11, 2013

SECURITY

Why the Cisco SIO Portal Doesn’t Give Out Candy

2 min read

This blog post highlights the most recent changes, several of which based on direct Cisco customer feedback, made to the Cisco Security Intelligence Operations (SIO) Portal. Thanks to this customer feedback, Cisco SIO is armed with the data necessary to evolve the Portal to ensure that relevant security content is where you need it, when you need it.

March 7, 2013

SECURITY

Defense in Depth with Software Defined Networking

3 min read

Last week at the RSA Conference in San Francisco, I had the pleasure of speaking to thousands of security professionals about the opportunities and risks associated with using Software Defined Networking (SDN) for security, which will be the underlying fabric of our next generation data centers and networks. SDN-enabled security will provide a better way […]

March 6, 2013

SECURITY

Social Media Is Like Stir-From-the-Bottom Yogurt, Culture and All

2 min read

Security and its integration with social media continues to be a topic of conversation amongst my colleagues in Security Intelligence Operations. We observe how “being connected” has become an integral part of many lives around the world: each voice has an opportunity to be heard, provided those voices are given unfettered access to the Internet. […]

February 28, 2013

GOVERNMENT

RSA Conference 2013: I Am Security

Here I sit… In Mel’s Drive-In Diner, San Francisco, CA. I just inhaled the “El Ranchero Americano”, which I am sure to regret later, and am enjoying tunes from yester-year...

February 22, 2013

EDUCATION

Addressing Security Challenges and Campus Safety

Schools are facing increasing security challenges, ranging from campus violence to thefts, from vandalism to natural disasters. Abductions, Shootings, Bullying, Thefts, Vandalism, Visitor Management, Bomb threats, Fire, Earthquakes, Local Community Emergencies. According to the respondents to the Campus Safety Magazines 2013 yearbook & survey, here are some  top challenges for schools in 2013: 43%  more […]

February 14, 2013

SECURITY

Reflections from a road trip: The evolving risk of DDoS attacks

The author, Russ Smoak (Director of Cisco Security Intelligence Operations), discusses some of the feedback received from customers recently with regard to the Distributed Denial of Service (DDoS) activities that have occurred over the last few months. One of the main themes from this post is that it is time to start considering the threat of DDoS as a business continuity risk and not necessarily just a security concern.

February 13, 2013

SECURITY

We Are Listening. Keep the Feedback Coming!

The Cisco Security Intelligence Operations (SIO) team is constantly striving to improve your experience while visiting the SIO portal. Your feedback is invaluable so we can better understand how you use and value the security resources on the Cisco Security Intelligence Operations Portal at http://cisco.com/security.

February 12, 2013

SECURITY

Cisco Security Vulnerability Management Presentation at (ISC)2 New York City

This post highlights a presentation made by the Cisco PSIRT team at the (ISC)2′s New York Metro Chapter meeting on evening of February 13th, 2013. The “Security Vulnerability Handling at Cisco” presentation will cover: Collaboration and coordination of Cisco security teams which manage vulnerability detection, mitigation and disclosure PSIRT: Mission, Process, Engagement Model Customer Expectations Top of our mind Take home points Question and Answer By the end of this presentation, attendees will have a better understanding and perspective of what goes into managing security vulnerabilities related to Cisco products, as well as managing security vulnerabilities in general.