Current Articles | RSS Feed
In my one-man crusade to make security news something useful, looks like the White House took my advice and decided not to call the position “Cybersecurity Czar”, but rather “Cybersecurity Coordinator”. Whew! Close PR shave for the Pres.
From the article “Obama Announce creation of cybersecurity coordinator position”:
The coordinator will not only run a new White House cybersecurity office, but will also be a member of the National Security Staff and National Economic Council.
In other security related news, I found this article especially interesting, Security and Regulatory Concerns Slow Some Virtualization Efforts. Specifically, it discusses how any regulated server or service, for example, card processing and HIPPA regulated systems and data, should not be implemented on a virtualized server.
Thought the article was particularly useful in drawing out the concerns of other stakeholders in an enterprise besides just the server guys whose concerns are mainly saving rack space and being green. One of those stakeholders was the security team - where do you position your taps and intrusion detection nodes in a virtualized network?
Last I checked Snort didn't run on the backplane, but that's where it needs to go next.
[update: 5/29, 2:50p - PC World picked up on the Czar-thing: Best quote:
Notably absent from Obama's description of the position was the word "czar." "I'm really happy he didn't use the word czar," said Jeff Moss, director of the Black Hat information-security conferences. "We're a democracy and we don't have dictators. How could we have one person sweeping away all these problems?"
Notably absent from Obama's description of the position was the word "czar."
"I'm really happy he didn't use the word czar," said Jeff Moss, director of the Black Hat information-security conferences. "We're a democracy and we don't have dictators. How could we have one person sweeping away all these problems?"
About me
I’m an independent consultant who used to do a lot of work for OpenLogic. I greatly appreciate OpenLogic and the mission they are fulfilling as well as their willingness to let me contribute to this blog. Views expressed here are not necessarily those of OpenLogic and any mistakes are 100% attributable to me. You can contact me at: landon at 360vl dot com or visit http://sawdust.see-do.org Twitter @esawdust
Allowed tags: <a> link, <b> bold, <i> italics
If you read a post on The Enterprise OSS Blog, please leave a comment. Let us know what you think, even if it's just a few words. Comments do not require approval, but they are moderated.OpenLogic reserves the right to remove any comments it deems inappropriate.