Amrit Williams, CTO of BigFix, Inc.and Rick Wesson, CEO of Support Intelligence, (www.support-intelligence.com) discuss industry efforts to combat the Conficker Worm that go beyond passive anti-malware actions to encompass measures to disrupt the worm and its perpetrators.

Note: This podcast has been reposted in transcript form due to technical difficulties in the original MP3 file.

Click Here for the Transcript

Amrit Williams, CTO of BigFix, Inc. and Jose Nazario, Manager of Security Research at Arbor Networks, discuss industry response to the Conficker worm, highlighting the work of the industry-wide Conficker Working Group (www.confidantckerworkinggroup.org).

Note: This podcast has been reposted in transcript form due to technical difficulties in the original MP3 file.
Click Here for the Transcript

Amrit Williams and Dave Watson, Chief Technology Officer of Mede discuss the impact of high-impact healthcare industry regulations including the Health Insurance Portability and Accountability Act (HIPAA), Fair Credit Reporting Act (FCRA) and Payment Card Industry (PCI) on IT security and systems management programs in the healthcare industry. In addition, initiatives such as electronic medical record keeping and integration of management and clinical systems are accelerating the automation of healthcare like never before. In this podcast, Amrit and Dave compare and contrast business, regulatory and ethical issues influencing healthcare and other industries.

Episode 9 MP3

Amrit Williams and Adrian Lane, Security Strategist at IT security consultancy Securosis  www.securosis.com) discuss the implications of taking a data protection-focused approach to IT security. In particular, the rise of technologies such as virtualization, software as a service (SaaS), cloud computing, mobile computing and the Internet itself mean that data is moving around like never before, rendering physical asset-focused approaches to security increasingly obsolete. While mature technologies, such as encryption, Network Access Control, intrusion prevention, conventional anti-malware defense exist for protecting data at rest, securing data in motion is a rapidly evolving field. Information-centric security, defined as maintaining data availability and integrity against external and internal threats requires new thinking not only about how to protect data, but the fundamental questions of just what is data security, exactly?

Episode 8 MP3

Amrit Williams and Concord Hospital (Concord, NH) Director of Security Architecture Mark Starry discuss how initiatives such as HIPAA, electronic medical records, privacy, and doctor’s clinical needs influence security and system management programs in a healthcare delivery organization. In particular, Starry emphases the need for functional and process consolidation, visibility into IT assets, and taking a proactive approach to protecting data to enable its productive availability to qualified users while preventing its misuse.

Episode 7 MP3

Amrit Williams and IBM’s Scott Johnson discuss the market trends that influenced development of the new IBM Proventia ESC product.

Special Edition 1 MP3

Amrit Williams and guest David Mortman, CISO in Residence, Echelon One discuss PCI and Compliance Initiatives.

Episode 5 MP3

Amrit Williams and guest Michael Santarchangelo discuss Santarchangelo’s new book, Into the Breach, on human factors influencing enterprise IT security.

Podcast listeners can receive a 25% discount on Into the Breach by using the promo code “bigfix” at checkout.

Episode 4 MP3

Amrit Williams and Paul Roberts, senior analyst at the 451 Group discuss US government security policies, in particular whether hiring a Cyber Security Czar will bring about improved coherence in US government information security policy.

Episode 3 MP3