Risk Bloggers Lists Ten Ascendant Information Security Trends

Risk Bloggers, the site providing security wisdom ahead of the curve, lists Ten Ascendant Trends for the Next Chapter of Information Security. These trends, including metrics based on derivatives, federal rules of civil procedure, whitelisting and XACML, are among key trends that will shape the maturation of corporate information security programs.

Ferndale, WA (PRWEB) May 31, 2007 -- Risk Bloggers, a web site of industry experts, announces Ten Ascendant Trends for the Next Chapter of Information Security, written by site editor Jim Reavis, and available at www.riskbloggers.com.

The people who own corporate information security programs have spent the last few years playing a game of regulatory catch up, while for the most part spinning their wheels when it comes to implementing new and actually useful concepts to mitigate evolving threats and justifying their existence. Meanwhile, exploiting information security vulnerabilities for financial gain has never been easier and is now big business, with sophisticated tools, mature distribution channels, stable malware pricing and even some slick marketing. Yet, with all the bad news, you do hear about a lot of good ideas being bandied about to make changes in the way we protect information assets.

Among key trends highlighted are metrics based on derivatives, federal rules of civil procedure, whitelisting and XACML. As corporate information security matures, it is also expected that we will see a closer relationship with business continuity and disaster recovery, under an Enterprise Risk Management umbrella. Overall, the trends reflect a need for information security controls to become more pragmatic in the face of rapid globalization of our enterprises, deperimeterization, regulatory overload and the reality of static information security budgets.

###