SMBs are the least likely to survive the costs associated with a breach that involves data that fall under the Payment Card Industry umbrella. There are several types of cost including those associated with reputation damage, the time and efforts required to repair the breach and return to normal operations, the time and expense of […]
About Paul Hill
Paul Hill has worked with SystemExperts as a principal project consultant for more than twelve years assisting on a wide range of challenging projects across a variety of industries including higher education, legal, and financial services. He joined SystemExperts full time in March 2012 and coordinates the SMARTday practice.
Entries by Paul Hill
Every time I encounter an organization that focuses on perimeter security while ignoring best practices on the internal network I think of Gary Larson’s Far Side cartoon where two polar bears are on either side of an igloo and one says to the other, “Oh hey! I just love these things!…Crunchy on the outside and […]
I was recently asked to comment on mistakes companies make in purchasing and implementing data leak prevention tools (DLP). Although we have been talking about DLP for quite some time, it continues to be a challenging issue for many companies. In my experience, the mistakes companies make fall into the following categories: inadequate risk analysis prior […]
The Anthem breach continues to generate news. Just yesterday, NBC News reported that “millions of American children had their social security numbers, date of birth and health care ID numbers numbers stolen in the recent data breach at health insurance giant, Anthem Inc.” All this despite Anthem reporting that they doubled their investment in security […]
Passwords continue to be a key topic of conversation among small-business owners. While we have talked in recent blog posts about ways to make passwords stronger, I’d like to discuss some of the common errors SMBs make when it comes to the passwords they pick to protect their data. Small businesses are less likely to […]
In the past year there have been a number of well publicized large scale data breaches of large enterprises. Most recently the Sony breach has been dominating the news. There are articles that say in 2007, Sony’s executive director of information security said that he wasn’t willing to put up a lot of money to […]
SC Magazine’s Stephen Lawton recently interviewed me for the publication’s latest eBook Defending Big Data, looking at the big business of Big Data. During our conversation, I talked about how Big Data can create big problems for CISOs, because it is a major target for cyber criminals seeking to steal proprietary information, intellectual property and […]
For companies purchasing cloud services, the number one priority should be how to evaluate the risk of using a particular vendor. Many companies don’t have a solid process for determining how to evaluate a third party cloud vendor for risks nor how to assess the likelihood of a breach at a third party. Too often, […]
The cloud is here to stay. The industry continues to strive for understanding of the myriad of security concerns and develop methodologies for evaluating the risks. Existing, mature, security frameworks continue to provide a strong basis for evaluating the risk but there are a small number of additional issues that should be evaluated when performing […]
Since 1994, SystemExperts has been helping companies see the big picture and design solutions to meet their comprehensive security needs. We over-deliver and provide unmatched personal attention, distilling problems to their root causes and recommending what’s appropriate for every client.
News & Insights
Tel: 1 (888) 749-9800
Fax: 1 (978) 440-9636