Security and privacy teams must work together to protect personal information in the digital age. (Journal Article - May 1, 2008)

Information security has evolved in the past 10 years from a siloed, uber-secret endeavor to an accepted enterprise business practice. (Journal Article - July 1, 2008)

In the four years since it was founded, the Jericho Forum has promoted a new approach to information security, one that takes into account that traditional hard boundaries between the company and the rest of the world are fast dissolving. (Journal Article - July 1, 2008)

A national data protection law would help curtail identity theft and could boost international relations. (Journal Article - July 1, 2008)

Even security-minded organizations can trip up on common misconceptions that lead to breaches and bad publicity. (Journal Article - April 1, 2008)

Information Security and SearchSecurity.com presented more than 1,600 readers with some 360 security products, divided into 18 categories, three categories which failed to draw sufficient reader response are covered in market articles. (Journal Article - April 1, 2008)

If the risk of losing customer or partner information outweighs its value, why collect it in the first place? (Journal Article - April 1, 2008)

Microsoft and Oracle are generous enough to regularly provide severity ratings on vulnerabilities. (Journal Article - March 1, 2008)

Security risk models are nowhere near as robust or proven as financial risk models, so at this time the information security practitioners have the best knowledge of the field to be able to assess this risk. (Journal Article - March 1, 2008)

According to the Information Security/ SearchSecurity.com Priorities 2008 survey, you'll be spending more time on...well, you name it. (Journal Article - February 1, 2008)

Security practitioners love SSL, and with good reason. It is well designed with support for multiple encryption protocols, and is easily reconfigured in case any should get cracked or outdated. (Journal Article - February 1, 2008)

Risk management brings you closer to the business, but you must understand that risk is not a numbers game. (Journal Article - February 1, 2008)

Troon Golf is the third-largest golf management company in the world, with 200 facilities under management. (Journal Article - February 1, 2008)

In 10 years, information security as we know it may not exist. Rather than a separate product, it may simply be embedded into everything. Or Web services may upend traditional enterprise security. (Journal Article - January 1, 2008)

ChoicePoint put data breaches on the front page of The Wall Street Journal, into corporate boardrooms and the consciousness of Americans. (Journal Article - January 1, 2008)

Sarbanes-Oxley empowered information security professionals with the clout they'd sought for so long. (Journal Article - January 1, 2008)

Information security has matured as a profession in a mere 10 years, despite waging an endless game of catch-up with threats, legislation and the demands of business. (Journal Article - January 1, 2008)

Information Security celebrates its 10th anniversary with a new theory on risk management for the next decade. (Journal Article - January 1, 2008)

I read most articles written by Bruce Schneier and Marcus Ranum; in general, they hit the mark and have a good understanding of security and the society in which we live. (Journal Article - November 1, 2007)

In recognizing seven individuals working in different markets, you might think their experiences and abilities would be quite diverse. (Journal Article - October 1, 2007)

Authentication and access control used to be fairly simple propositions: set up user IDs, passwords and role-based permissions and you were done. In today's enterprise environments, you have to get deeper in the weeds. (Journal Article - October 1, 2007)

I wanted to extend a hearty well done and congratulations to your staff for the awesome work you did on the July/August issue of Information Security magazine (CISO Survival Guide). (Journal Article - September 1, 2007)

Succeeding in a pressure-filled world of auditors and cyberthreats requires skills in business, technology, people and more. (Journal Article - July 1, 2007)

New business initiatives mean new threats. Are you ready? (Journal Article - July 1, 2007)

Bruce Schneier's arguments are silly (Face-Off, May). If someone is concerned over the ubiquity of information, may I suggest they stop renting from NetFlix, use cash, lose the cell phone and stop being such a nerd. (Journal Article - July 1, 2007)