-
Apr 02, 2013
In an Experian study, “Securing Outsourced Consumer Data” produced by the Ponemon Institute it was revealed that 46% of organizations do not evaluate the security and privacy practices of vendors before sharing sensitive or confidential information.
Read full post >
-
Mar 19, 2013
Information is becoming a critical asset for organizations across the globe. As it increases in value, so too do the number of threats, as well as the number of protocols and regulations from regulatory authorities designed to ensure that businesses adopt the solutions necessary to ensure that information is protected. While a comprehensive, compliant information security initiative does not come cheaply, there are solutions that will help keep costs down even as the challenges associated with protecting this critical business asset continue to grow.
Read full post >
-
Feb 07, 2013
Data security is everything to businesses, and protecting critical data at the source is one of the best ways to keep your business secure, instead of relying on firewalls and access control alone. In addition to focusing efforts on encryption and key management, businesses should also consider tokenization.
Read full post >
-
Jan 22, 2013
With data security top of mind for many companies these days, Liaison is proud to announce that our Protect Token Manager solution has been named a finalist the Info Security Products Guide Global Excellence Awards in the Innovation in Enterprise Security category. According to Info Security “the Global Excellence Awards recognize security and IT vendors with advanced, ground-breaking products and solutions that are helping set the bar higher for others in all areas of security and technologies.”
Read full post >
-
Nov 12, 2012
The Cloud Security Alliance (CSA) and ISACA have issued the results of their survey, revealing how organisations feel about the “cloud”.
Read full post >
-
Nov 07, 2012
A global study of more than 5,200 consumers across 17 countries conducted by ACI Worldwide and Aite Group has revealed that one-in-four respondents has been victimised by credit, debit or pre-paid card fraud during the past five years.
Read full post >
-
Mar 12, 2012
Like most conferences, there were several key themes and buzzwords being bandied about at this year’s RSA Conference. Some of the hot topics on the showroom floor included terms like consumerization, mobility and last but not least, big data.
Read full post >
-
Mar 01, 2012
I am currently reading a great book about enterprise software entitled ‘How to Succeed in the Enterprise Software Market’ by Craig Le Clair. Even though the book was published back in 2005, many of the core ideas and principles still apply.
Read full post >
-
Nov 17, 2011
I’ve been helping companies on both sides of the pond solve their data security problems for many years now. If I’ve learned one thing, it’s this: when I go into an organization that runs Windows, there’s little question of the need for data security. The organization knows it and so do I. When I visit a company whose IT infrastructure revolves around a mainframe, however, the mindset is often quite the opposite. In fact, the biggest data security misconception I encounter is the belief that the mainframe environment is inherently secure. Most IT staff view the mainframe as just another network node. Why? Because it’s universally perceived as a closed environment and, therefore, invulnerable to hackers.
Read full post >
-
Nov 09, 2011
With more than 630 attendees from 200 plus health-related companies present at the Georgia Health IT Summit, it's easy to see Georgia is making a difference in providing better overall care for patients. Thanks to Georgia Tech and a large IBM (formerly Internet Security Systems) office in our city establishing successful roots in security, in conjunction with Georgia’s recent ranking as the movie film capital second to Hollywood, our state is positioned for continued growth, notably in the area of health IT.
Read full post >
-
Nov 08, 2011
Over the years, I’ve spent a lot of time sitting side by side with CISOs, helping them to assess their data security risks and counseling them on best practices and technology options to mitigate those risks. The biggest data security misconception I encounter is the belief that the mainframe environment is inherently secure — bulletproof, if you will.
Read full post >
-
Oct 05, 2011
Most people that I have spoken with since since April, when Liaison Technologies acquired nuBridges, know that I’ve been spending a lot of time in the healthcare vertical. Just as security within the retail and financial services verticals was key to nuBridges success during the past 6 years, healthcare is an equally, if not bigger opportunity in that vertical alone. It not only includes all of the security needs that we provided at nuBridges – not just protecting credit card information, but rather protecting all patient and other sensitive data – but adds the capabilities of integration and data management to the mix, two areas where Liaison Technologies excels.
Read full post >
-
Sep 29, 2011
I spent last week at the PCI SSC meeting in Arizona where I experienced an interesting dichotomy. On Tuesday, I attended a session where proposals were being presented for the formation of different SIGs for next year. There were a couple of groups that were looking to develop something resembling a checklist to assist merchants in meeting compliance, versus forcing them to look at their unique environment and accessing how to best meet the compliance requirements. I feel this would be a bad direction for the industry to head.
Read full post >
-
Sep 19, 2011
Sitting here in the general session of the IAPP conference, I am not surprised to see the interest generated around privacy, compliance and its implications among all privacy professionals (CIPPs) attending the conference. Privacy professionals are a little different from security professionals. While security professionals are all about how we can prevent data breaches, privacy professionals are all about how to respond to data breaches and what organizations need to do in order to comply with privacy laws on an ongoing basis. Let’s make a quick distinction here between data privacy and data security.
Read full post >
-
Sep 16, 2011
In my last post I discussed the transition of stealing sensitive data from retail to higher education to hospitality, and suggested that health care will be next. Now I thought I would focus in on why I believe this to be true.
Read full post >
-
Sep 12, 2011
First we saw the bad guys target retailers to obtain credit card information to resell. The media made a few of them poster children of “who you don't want to be”, and there’s no need to name them as we all know who they are and they have come a long way in improving security. When retail became a bit more difficult, the bad guys moved on to target both the higher education and hospitality industries. Same story, though these industries are not nearly as far along as retail has gone so there’s still lots of work to be done there. I spend a lot of nights on the road in hotels and would personally prefer not to receive another breach notification letter. To do my part, I choose which hotel chains to stay with based on the security of not only my credit card, but also my customer loyalty information – others I avoid like a plague.
Read full post >
-
Sep 08, 2011
Having been involved in B2B services over the past two decades, I have seen a lot of change in the industry. The pervasiveness of EDI hit its stride in the 90’s with pc-based EDI translation software to provide rapid enablement of the supplier base for enterprise companies. PC-based software began with dial-up modems, but eventually evolved in the late 90’s toward usage of the “always on” Internet. In fact, the company I worked for at the time was involved with the CommerceNet consortium work to test the viability of the Internet as a message delivery backbone.
Read full post >
-
Aug 11, 2011
I’m happy to report that our Format Preserving Tokenization and key management solutions known as Liaison Protect (formerly nuBridges Protect) have passed a Payment Application Data Security Standard (PA-DSS) audit with flying colors, further proving our products’ high level of security and reinforcing our continuing leadership position in the data security industry.
Read full post >
-
Jul 14, 2011
Huddled in a hotel in the epicenter of the healthcare debate, Washington, DC, over 300 people have gathered to figure our how to share patient data in an effort to improve long-term care while lowering expenses. While those appear to be opposing forces, as information recording moves from paper to digital and organizations such as hospitals, payers and providers, began to collaborate with one another, magic happens.
Read full post >
-
Jun 30, 2011
While at the Gartner Security Summit last week, I took a journey across Northern Virginia, where I used to live twelve years ago. Crossing over the Woodrow Wilson Bridge, I was overwhelmed by the amount of construction taking place on the I-495 Capital Beltway.
Read full post >