A Secure Data-gathering Approach in Wireless Sensor Networks: Considering QoS Via Hashing Mechanism

Authors: Michael Roseline Juliana and Subramaniam Srinivasan

Data collection is a challenging task in wireless sensor networks (WSNs) due to the limitations in communication bandwidth and the energy budget, but it provides a secure data-gathering approach.

Big Data—Hot Air or Hot Topic?

Author: Angel Serrano

There are many different definitions of the term ‘big data’, and concerns about whether it will necessitate significant changes in business operations in the short term.

Can Elliptic Curve Cryptography be Trusted? A Brief Analysis of the Security of a Popular Cryptosystem

Author: Veronika Stolbikova

Can Elliptic Curve Cryptography be Trusted? A Brief Analysis of the Security of a Popular Cryptosystem for smart card, phone, IoT & Bitcoin

Encryption in the Hands of End Users

Author: Eric H. Goldman

As a defense strategy, many organizations are expanding their usage of encryption which provides protection from unauthorized access and reduces the likelihood of data theft.

Going Beyond the Technical in SIEM

Author: Aleksandr Kuznetcov

This article addresses an existing imbalance between technical issues and process aspects related to SIEM. This gap is the root cause of some skepticism with and disappointment in SIEM.

How Boards Realise IT Governance Transparency: A Study Into Current Practice of the COBIT EDM05 Process

Authors: Steven De Haes, Anant Joshi, Tim Huygh, and Salvi Jansen

In our increasingly digitised economy, IT has become fundamental to support, sustain and grow organisations.

Protecting Information—Practical Strategies for CIOs and CISOs

Author: Devassy Jose Tharakan

Organizations that don't position their information security group (ISG) strategically within the organization’s structure often fail to receive the desired benefits. Visit this article to learn more.

The Complexity Is in the Details: New EU Data Protection Law Promises User Control

Author: Michael Vanderpool

Four years after its introduction, the European Commission has recently come to agreement on the General Data Protection Regulation (GDPR) as organizations around the globe await the details, which should be released soon.

Information Ethics: Moral Dialogue on the IT-leveraged Economy

Author: Vasant Raval

In information ethics, we face moral questions in four spheres, or roles: as a person, and as an economic agent, as a company leader and beyond a firm’s boundaries.

Information Security Matters: Challengeable Truths

Author: Steven J. Ross

In information security, I have seen a vast revolution, from the days of “It cannot be done” to today’s “It must be done.” My enthusiasm about our profession has not only not abated, but it has increased enormously in the years—still just a few years—that the reality of the threat of cyberattacks has been recognized.

IS Audit Basics: Auditing IS/IT Risk Management, Part 2

Author: Ed Gelbstein

Part 1 of this article described the commonalities, differences and possible overlaps between the IS/IT internal auditors and the IS/IT risk management functions managed by the CIO.

Book Review: Securing the Virtual Environment

Authors: Davi Ottenheimer and Matthew Wallace

Securing the Virtual Environment: How to Defend the Enterprise Against Attack explains that some advantages of virtualization include increased IT agility, greater hardware utilization, improved disaster recovery abilities and better business continuity capabilities.

The Network: Khawaja Faisal Javed

Author: ISACA

What is the biggest security challenge that will be faced in 2016?