Two thoughts for today. I found a resource that is a free Google App that looks great. for those that do much web conferencing, or need to do some but can't justify the cost of the big commercial products, check out Vyew in the Google App Store. Very Cool.
Second Thought: Where do we sacrifice security for social involvement? Some organizations, whether schools, non-profits, or other agencies, often feel a certain pressure to provide resources to the community around them. Where do you draw the line between offering those resources to the community and sacrificing your network security? Is there a way to offer the desired services and still maintain the integrity of the organization? this question is one that encourages InfoSec to push their businesses to look at their community involvement from new angles and to see new ways to offer services that once came from a different space. Not only can this be an opportunity to tighten security for the organization but may also be an opportunity to enhance the serv
There needs to be a separation between corporate and general use networks. Many organizations have different levels of use on their networks: programmers, manufacturing, and administration, or in the case of the education environment you have faculty, staff, and students. These different environments need to be treated differently. There should be segmentation between them and the assets on them should be managed accordingly.
This is not to say that different organizational divisions should not have shared resources or that there are not times when datasets cross boundaries, but when there is not appropriate segmentation in a network it becomes difficult for proper security safeguards to be put in place. Also There becomes a fuzzing of the lines between what is what in the corporate space. Tools such as DLP become difficult to implement and harder still cultural boundaries become b
I have been doing information assurance and security work for many years with a focus on network security monitoring and incident handling. I have been working in IT for more than fifteen years with a focus on architecture and systems.