Reduce audit findings with these 5 key tips on change management. If you were part of the ISC2 webinar (link to be posted when available), you heard our CEO, J.J. Thompson, speak on what Auditors hone in on and how to reduce findings. Download this document to help you keep some of these top tips [...]
Rook Insight* (Our Blog)
We believe that the open exchange of information is critical to solving the IT Risk Management challenges facing business today. We promise to provide timely intelligence and actionable insight to current clients, prospects, competitors and the public. We simply ask for you to remember us when it comes time to send out your RFPs!
Wordle Fun
Saturday, April 24th, 2010ISC2 Visitors: Change Mgmt Tips Download
Tuesday, April 20th, 2010Whiteboard Ad – Security Assessments
Wednesday, February 17th, 2010Continuing our Ad Spoof series, the team thought it would be good to highlight what many of our clients consider to be the initial way we stood out to them. They tell us that before they met our team, they constantly struggled to obtain Security and Risk Assessments that were useful to BOTH IT and [...]
Urgent: New ACH and Wire Payment Trojan Facilities 100K+ Transfers From Small to Mid-Sized Banks
Wednesday, February 10th, 2010This alert is intended for small to mid-sized businesses and banks who may realize $100K plus losses associated with unauthorized external wire transfers originating within the bank from known workstations with valid user credentials. Call us at 888.712.9531 for immediate assistance. In the past few months, we have noticed an increase in targeted attacks towards [...]
Whiteboard Ad – IP Football
Thursday, January 28th, 2010Entering into 2010, our team decided to step up our marketing efforts yet again, and instead of the traditional letters, post cards, and direct emails, we wanted to so something that would inject a bit of fun into a somewhat less than fun subject matter. The result: the beginnings of our 2010 Ad Spoof campaign. [...]
JUNOS Kernel Crash Exploit Released
Friday, January 8th, 2010Urgency is now increased as an exploit has been released regarding a report has been received from Juniper under bulletin PSN-2010-01-623 that a crafted malformed TCP field option in the TCP header of a packet will cause the JUNOS kernel to core (crash). In other words the kernel on the network device (gateway router) will [...]
3 AES-256 USB Thumb Drives Vulnerable
Thursday, January 7th, 2010Did your management team opt for a less expensive alternative to IronKeys? If so, its unfortunately time to re-visit that decision. Kingston, SanDisk, and Verbatim all have a vulnerability that allows unauthorized access to password protected, FIPS certified, AES 256-bit encrypted data on their USB thumb drives. “Cracking the drives is therefore quite simple. The [...]
2010 IT Risk Outlook Coming Soon
Monday, January 4th, 2010Before the end of Q1 2010, Rook will release a 2010 preview that will highlight proprietary survey data on the top challenges faced in our industry as we launch the new year as well as a behind the scenes look at the movers and shakers to watch as we enter into what will likely become [...]
EMC & Archer Pave Way for 2010 Consolidation
Monday, January 4th, 2010Since 2001, EMC has been sitting on cash and slowly but surely playing the ultimate game of chess – working towards a checkmate in the IT solutions space. After acquiring Documentum, VMWare, RSA, Iomega, Datadomain, and now Archer, EMC is positioning to accomplish what Symantec has all but failed to do… leverage complimentary emerging leaders [...]
ISC2 SecureIndianapolis
Thursday, October 8th, 2009Thank you, Indianapolis, for a great event! Rook practice lead J.J. Thompson sat on a panel to discuss compliance strategy & managing P&L for security teams along with other local thought leaders. The panel, moderated by ISC2 featured speaker Brandon Dunlap of Brightfly, discussed industry trends such as: + an increase in demand for security [...]
Receive Insight* Updates
What Do You Think?