Checkpoint | Software Associates.

The Israeli credit card breach

Posted in: Data leakage, Information security|Tags: Checkpoint, credit cards, data security breaches, Israeli software, Microsoft, PCI, PCI DSS 2.0|By: Danny Lieberman|January 8, 20128 Comments

There are 5 reasons why credit cards are stolen in Israel. None have to do with terror; 4 reasons are cultural and the 5th is everyone’s problem: “confusing compliance with security“. I could write a book on mismanagement of data governance and compliance, data security, web server security, web application software security. In 2003, I …

Why Microsoft shops have to worry about security

Posted in: Information security|Tags: Checkpoint, data breach, hackers, network security, Websense|By: Danny Lieberman|January 13, 2011No Comments

I am putting together a semester-long, hands-on security training course for a local college. The college asking me for the program showed me a proposal they got from a professional IT training company for a 120 hour information security course. They are trying to figure how to decide, so they send me the competing …

Small business data security

Posted in: Compliance, Internal security, Technology|Tags: Anti-Fraud, business threat modeling, Checkpoint, Cisco, counterfeiting, data breach, Data leakage, Data retention, data security, IT Governance, Microsoft, Risk and strategy, Threat modeling|By: Danny Lieberman|January 4, 2011No Comments

Here are 7 steps to protecting your small business’s data and and intellectual property in 2011 in the era of the Obama Presidency and rising government regulation. Some of these steps are about not drinking consultant coolade (like Step # 1- Do not be tempted into an expensive business process mapping project) and others are adopting best practices …

Is your DLP project a failure?

Posted in: Data leakage, Information security|Tags: Checkpoint, Cisco, Data loss, DLP, Fidelis Security, McAfee, Symantec, Websense|By: Danny Lieberman|July 29, 20101 Comment

Are we in the same valley of death that held content management applications in the 90s? Where companies spent 6-7 figures on content management from companies like Vignette and over 50% of the projects never got off the ground? Tell me what you think in this Linked In poll – DLP success or failure

Imperfect knowledge security

Posted in: Compliance, Data leakage, Information security, Internal security|Tags: Black Swan, Checkpoint, Data leakage, Data loss, data loss prevention, DLP, Linux, Microsoft|By: Danny Lieberman|May 7, 2009No Comments

A few months ago I wrote about The Black Swan of Security – how major data loss events have 3 common characteristics – 1) A major data loss event appears as a complete surprise to the company . 2) Data loss has a major impact to the point of maiming or destroying the institution (note …

Preventing intellectual property abuse

Posted in: Compliance, Information security, Risk Assessment, Risk mitigation, Software security, Technology|Tags: Checkpoint, Data loss, DRM, IRM, Microsoft, Symantec|By: Danny Lieberman|March 11, 20095 Comments

One of my pet peeves with security vendors like Symantec, Vontu, Websense and Checkpoint is marketing collateral that totally disregards the basics of security – it’s like they hired an English major straight out of school and told them to start writing. Sensitive assets, confidential assets, proprietary assets – you can make a total mishmash …

Are you on your firewall, while your employees are on Gmail?

Posted in: Data leakage, Information security, Internal security|Tags: Checkpoint, data breach, McAfee, Symantec|By: Danny Lieberman|December 11, 2008No Comments

Pop question No. 1: What percent of your employees send sensitive company documents to their Gmail accounts? Pop question No. 2: When you layoff 15 percent of your workforce, should you fire the information security manager a) First, b) Last or c) Give her an incentive to help ensure that a data breach of company …

Archives