While many pundits have proclaimed gaping holes in the document-oriented storage technologies model, certain characteristics of the NoSQL movement that work to its advantage when it comes to security.
This article requires a full-access membership (free). Please login or register to continue reading.
Within the Enterprise Security unit at Hewlett-Packard, Sechman manages the Software Security Research group responsible for research that drives the HP WebInspect line of dynamic application security testing products. Prior to HP, he was the Director of the Attack and Penetration Testing Practice at Sunera LLC and formerly served as lead penetration tester within the SPI Labs web security research group at SPI Dynamics, Inc.
From heightened risks to increased regulations, senior leaders at all levels are pressured to
improve their organizations' risk management capabilities. But no one is showing them how -
Learn the fundamentals of developing a risk management program from the man who wrote the book
on the topic: Ron Ross, computer scientist for the National Institute of Standards and
Technology. In an exclusive presentation, Ross, lead author of NIST Special Publication 800-37
- the bible of risk assessment and management - will share his unique insights on how to:
Understand the current cyber threats to all public and private sector organizations;
Develop a multi-tiered risk management approach built upon governance, processes and
Implement NIST's risk management framework, from defining risks to selecting, implementing
and monitoring information security controls.