Issue No.01 - January/February (2006 vol.8)
Francis X. Taney Jr. , Buchanan Ingersoll PC
Thomas Costello , Upstreme, Inc.
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MITP.2006.27
Information security has become a hot-button issue for businesses of all sizes. And while these businesses tend to give the topic a lot of lip service, a look in the newspapers will show that even substantial enterprises aren?t immune to security breaches. Achieving good information security isn?t easy. And all too often, enterprises lack a clear understanding of what to do if they do discover a flaw or breach in their information security.
information security, security breaches, social engineering, compliance, Sarbanes-Oxley, Federal Trade Comission (FTC), financial constraints, security seams, enterprise security model, initial risk assessment, Certified Information System Security Professional, Certified Information Systems Administrator, Global Information Assurance Certification
Francis X. Taney Jr., Thomas Costello, "Securing the Whole Enterprise: Business and Legal Issues", IT Professional, vol.8, no. 1, pp. 37-42, January/February 2006, doi:10.1109/MITP.2006.27