Security Threat Report 2011
By preying on our curiosity, cyber criminals are able to use psychological traps to profit from unsuspecting users of technology.
Since there doesn't seem to be a shortage of stories about lost or stolen business information this week, I thought it might be useful to highlight a couple of resources that identify info security gaps and educate both managers and employees alike about how they can address these vulnerabilities and strengthen safeguards.
Information Security for End Users, uploaded by The Computer Guy, clears up any confusion about the concept by defining information security as processes and procedures designed to protect information and information systems from unauthorized access, use, disclosure, disruption, modification or destruction. This guide includes a PowerPoint presentation that gives users an overview of security from prevention to choosing a strong password.
To assist managers in understanding how to establish and implement an information security program, the National Institute of Standards and Technology created the Information Security Handbook. This handbook provides a broad overview of information security program elements with the goal of helping managers select and implement security controls that meet the requirements of the organization and demonstrate effectiveness.