CSOonline

How to write an effective information security policy

An information security policy is the foundation of an enterprise security program, ideally establishing in clear language what the organization expects from its security operations based on both its ...
Communications of the ACM

A Seven-Step Guide to IT Risk Management in Healthcare Environments

Once the risk team has been assembled, the crucial process of identifying risks must commence. The output of the risk ...
Forbes

What Is A Chief Information Security Officer? CISO Explained

The title of Chief Information Security Officer, or CISO, emerged during the 1990s as the first large-scale cyber attacks started to occur. Since then, it's become a near-ubiquitous role in any large ...
CSOonline

What is information security? Definition, principles, and jobs

Information security, sometimes abbreviated to infosec, is a set of practices intended to keep data secure from unauthorized access or alterations, both when it’s being stored and when it’s being ...