Digital healthcare is becoming increasingly important as healthcare providers strive to achieve the “Triple Aim” objectives of improved patient experience, improved population health and lower costs. Digital healthcare is an ecosystem, optimized to align with the needs of practitioners, staff and — most important — the patient population. It’s made up of interconnected, interoperable physical…

New Year’s resolutions provide an opportunity to focus on important things that may have slipped through the cracks the previous year. 

With all of the recent excitement about the “Shellshock” code execution vulnerability in the UNIX bash shell, and the somewhat older news about SSL vulnerabilities, I am reminded once again about the need for organizations to formally manage information security as part of an ongoing process.

Starting in Cisco’s Adaptive Security Appliance (ASA) software version 9.3.1, Cisco has added inline Security Group Tagging (SGT) support to the ASA-5500X and 5585X product lines. If you are not familiar with SGT aka TrustSec, it allows you to tag a packet with an identity field as it travels through the network. Why would anyone…

We are in the middle of security conference season. Therefore, it’s not entirely unexpected to see headlines from Black Hat and other conferences discussing “grave” security threats, and what they mean to our ability to protect our organizations and ourselves.

In a previous blog post, I mentioned that the measure of success with a cloud provider comes down to your ability to get the “real story” during the sales cycle.  While I touched on the physical security of the provider’s data center – what about the logical, remote and application data security in the cloud…