Home Recent Forum Activity
Recent Forum Activity PDF Print E-mail

This is a snapshot of recent security (tISS) discussion topics:

Recent Workshops :
(Reports available to tISS-registered members):

  • CSO Forum - The Changing Security Threat Landscape
  • Approaches to Data Encryption, Securing 'Data-at-Rest'
  • Approaches to Secure Authentication
  • CSO Forum - Governance & Policy
  • Aligning Information Security to Business Strategy
  • Incident Management - Definition & Identification
  • Security in Financial Services Forum
  • Identity and Access Management
  • CSO Forum - Emerging Electronic Security Threats
  • Computer Misuse - the use of Forensics and its Policies
  • Network Intrusion Detection vs. Network Intrusion Prevention
  • Meeting Multiple Security Standards - ISO 17799 & ISO 27111
  • IP Telephony & associated Security issues
  • Security & Relationships with Suppliers
  • Turning Security Policies into practice
  • Meeting Auditing & Regulatory Requirements
  • Mobile Security
  • The Freedom of Information Act
  • Cross-border Security & Legislation

Example tISS Q&A questions discussed and circulated :
(Full transcripts and contact details available to tISS-registered members)

  • Alternative Two Factor Authentication Methods To Replace RSA Keyfobs?
  • Security implications of using WebEx?
  • Web filtering solutions?
  • Acceptable use policy Compliance tools?
  • ISO 27001 Gap Analysis?
  • Remote Access Policies from non-company equipment?
  • Providers of External Vulnerability Scanning and Penetration Testing?
  • Remote Access via Citrix Access Gateway for Home & 3rd Party PCs?
  • Securing Windows Mobile 05 devices?
  • Network Quarantine(NQ) vs. Network Access Control (NAC)?
  • Laptop Hard Disk Encryption - Restrictions imposed by some countries?
  • Exchange, Blackberry and the MS 06-019 Security Patch?
  • Endpoint Device Control for USB and other devices?
  • Audit Trail Logging - best practice?
  • Data Server Scanning software?
  • Network Intrusion Detection vs. Intrusion Prevention?
  • Identity Management and Password Self-Service?
  • Voice & Data Separation?
  • Security Service SLAs?
  • Bluecoat Internet Browsing Appliances?
  • Network Policy Enforcement?
  • Monitoring and/or Blocking of Non-Malicious Internet File Downloads?
  • Information Asset Registers - Security Management?
  • Firewall Request Processing and Rule set Verification?
  • Gateway Filtering of HTML Protocol?