Latest Public Sector security News

Critical information is now more at risk of intrusion and theft than ever before
posted on 06/04/2011

In today’s interconnected world, we regularly deal with systems of overwhelming complexity and largely unmeasured risk, and that is before they become potential targets of explicit attack. When evaluating our effectiveness in dealing with cyber defence, we have two layers of uncertainty and risk: how effectively are we protecting critical information, and what are the adversaries actually getting and how might they use it against us? Multiple risks, including software errors and network management failures, are compounded by the certainty that adversaries seek to cut through our defences, and the resulting uncertainty as to how much of our critical information has been compromised or exactly how such a breach could affect our organisation’s future success or failure. The fate of nations is not decided by wars alone, but by disease, technology, economics—and information, among other salient factors. Increasingly, information underlies and facilitates these other domains as never ... [more]

NitroSecurity is recruiting channel partners in Europe and the Middle East
posted on 06/04/2011

NitroSecurity, Inc. is selectively recruiting channel partners to market with its SIEM suite of compliance and security solutions. The company doubled SIEM sales in 2010 and is currently seeking highly skilled, security-focused VARs and Systems Integrators to sell NitroSecurity’s fully integrated family of state-of-the-art SIEM, Log Management, Database & Application Monitoring and Intrusion Prevention solutions. NitroSecurity is committed to building strategic relationships with channel partners in Europe and the Middle East, as it enables large enterprises, critical infrastructure operators and public sector organizations to upgrade and automate their security infrastructures. The company’s NitroView SIEM suite readily addresses increasing compliance requirements like PCI-DSS, GPG-13 and ISO27001 and relentless cyber challenges, including data privacy, fraud, data loss, and advanced persistent threats. The company offers qualified channels excellent profit potential, lead g... [more]

Security Cleared Expo offers a productive environment in which those with security clearance seeking a new job can meet with potential employers
posted on 05/04/2011

Due to the success of the first Security Cleared Expo, held in Westminster in 2010, Security Cleared Jobs will be holding its second Security Cleared Expo in May. Industry demand has led the company to organise a Security Cleared Expo in Bristol this year, building on the success of its 2010 launch Expo in London. The organisers have decided to produce a similar exhibition in Bristol in order to open up the opportunities it offers to those working in the region and throughout the UK. The team at Security Cleared Jobs has seen a growing need for security cleared professionals in recent years and launched its first Security Cleared Expo in 2010 in an effort to meet this demand. This event was extremely successful, attended by around 1,200 candidates and receiving positive feedback from both attendees and exhibitors. Security Cleared Jobs has a wealth of expertise in this niche area and the Bristol Expo will be the first event of its kind in the UK this year to offer a well organise... [more]

The way in which state departments manage data security and internet access has to evolve
posted on 04/04/2011

Incidents such as the WikiLeaks debacle and the repeated accidental loss of patient records by Health and other government departments serve as a painful reminder that network vulnerabilities are also under threat from the inside. Proof, if any were needed, that authorised employees inside the organisation can pose an equal, if not greater, threat as those outside. One thing is for sure – state sector attitudes to data security will never be the same again. Not so long ago data security measures in the state sector were largely about finding and plugging network vulnerabilities before they could be exploited by hackers forcing their way in from the outside. IT departments would spend a great deal of time and energy establishing a secure perimeter, installing firewalls and intrusion prevention systems. Other outward looking measures such as locking-down desktops to stop users installing their own software, deploying anti-virus software (often two or three different ones as a fail-safe p... [more]

Data leak prevention solutions are increasingly important to corporate IT security strategy
posted on 04/04/2011

Users of the cloud share the same computing and storage resources not only in public and hybrid clouds, but also in corporate private clouds which might be used by several business units. As a result, one of the most urgent tasks for the IT security industry is to develop a consistent, yet practical information security model for the corporate cloud. The fact that data resides beyond the confines of the physical corporate IT infrastructure makes it impossible to precisely identify where it is at any given time, and – as a consequence – apply conventional security solutions, such as network security appliances, to protect static perimeters and control access to data. Threat profiles for the various types of cloud services therefore vary significantly from those of in-house IT computing models. Cloud adoption means firms must now focus on the data-centric security model, making data leak prevention (DLP) solutions increasingly important to corporate IT security strategy. Conventional s... [more]

Other Security news and resources