HomeReturn Home
Training & EventsInsist on Quality
Public Presentations
Training & Events Calendar
TrainingIncrease Your Net Worth
Certification TrainingISO Lead Implementer & Auditor
General CoursesProfessional Development Courses
Executive SummitsPremier Executive Networking
ConsultingKnowledge & Experience
Business ContinuityOptimize Your Sites Performance
Mergers & AcquisitionsAdvaned Menu System
Process ManagementImage Rotating Extension
Information SecurityAccordion Column Menu
CommunityFacilitating The Future
Executive CouncilComing SoonIn a report released in the fall of 2011 by PwC, global executives are confident of the ability to secure information. The report was based on the annual security survey, in which 9,000 executives in over 130 countries participated. With 43 percent suggesting they were confident in their security defenses, even more offered they expected spending on information security to increase by their company. Notwithstanding the above, only about 13 percent had employed sufficient controls that PwC would consider adequate. This suggests that this limited group of organizations had an organizational security strategy, reviewed it for effectiveness, and knew the types of issues they had been victim to over the past year.
The top catalyst for security spending was attributed to the concern over industrial espionage or corporate spying. While trade secrets and non-public information such as merger and acquisition plans were key concerns, only 16 percent of respondents suggested they were prepared to defend againts such a formidable foe.
So how realistic is this threat? Very real, suggests a March 2009 report entitled Tracking Ghostnet published by Infowarmonitor, which documented the identification and investigation of a large global spy ring that compromised approximately 1,300 computer systems in 103 countries affecting the offices of foreign affairs, international organizations, media, and NGOs around the world, the office of Dalai Lama, many US foreign embassies, and others.
In an April 2010 report entitled Shadows in the Cloud: Investigating Cyber Espionage 2.0, published by Infowarmonitor it documents the results of an investigation in to an espionage ring that leveraged cloud computing systems, social networking platforms, and free web hosting services all controlled by command systems. The report references compromised systems in India, the Office of the Dalai Lama, the United Nations, and government offices of several other counties.
In a November 2010 report is published by Infowarmonitor, entitled Koobface: Inside a Crimeware Network the story continues with an investigation in to a bot that infected numerous systems and exploited Pay-Per-Click and Pay-Per-Install systems.
CIMA One of the age old debates in information assurance is how to address the volume of issues on your plate, tactically or strategically? While it is understood a combined approach should be embraced, click here to see an intellectual argument on this important topic.
Click on the image above to watch a short introductory video.
We have 5 guests and no members online
Through knowledge and experience, we have developed and shared with our clients and others in the community "DIRECTION" a structured methodology for IT Governance.
Using DIRECTION, we take you step-by-step through the process of:
Give us a call and discover the difference we can make.
One of the least managed risk to organizations today is found at the heart of its supply chain and the management or lack thereof. In today's business climate with parts of our business outsourced and many stringent sanctions from regulators; organizations need a greater focus on supply chain risk management.
Areas such as outsourced payroll, HRIS, IT Infrastructure and application development, and more need particular attention to assessing and managing risk on an on-going basis due to the sensitive information and access they provide to people outside of the organization's boundaries and control.
Supply Chain Risk Management is more than just reviewing your existing contracts and getting vendors on-board with protecting information, it's also about having knowledge at your finger tips to know what might be affecting your suppliers to deliver goods and services, as well as being able to protect your customer data in the future.
At CIMA, we have the expertise to help your organization assess your current supply chain risks, develop policies and standards to set organizational expectations, and leverage technology to manage this critical issue on a go forward basis. Through our strategic alliances, we can provide tools to not only manage risks in your supply chain, but also provide alerts to incidents around the globe that could affect business.
Developing IT Governance - Through years of hands-on experience, we have developed "DIRECTION" a methodology for IT Governance.
Supply Chain Risk Management - Helping clients understand and measure the risks in their Supply Chain helps achiueve risk management goals. 
Enterprise Strategy Development - CIMA helps clients succeed at strategy development initiatives using our Base and Progressive Development Models. 
Awareness & Training - Leveraging a structured approach like our ACADEMICS methodology will help ensure the success of your communication program's goals.