Psychometric Analysis - Software developers and security testers
by Sameer Shelke, Co-founder, Chief Operating Officer & Chief Technology Officer, Aujas Networks

The fact that application or software security issues leads to most attacks, that protection at source is critical, perimeter security is not the only way to manage risk etc. has been known to us for several years now. There are several ways organizations are solving this issue using technologies, processes, training etc. An important area to look at is the way of thinking of developers and security testers. This presentation attempts to do a Psychometric analysis of the two areas and try and give some pointers to work on.

Read More

Relationship Management –A basic model
by Sameer Shelke, Co-founder, Chief Operating Officer & Chief Technology Officer, Aujas Networks

Relationship management is an important aspect of the CISO’s role. This presentation takes a look at the various facets of relationship management in a simple high level model which helps in the process and builds a model for the same.

Read More

IT Risk Management – As the Economy Revives
by Sameer Shelke, Co-founder, Chief Operating Officer & Chief Technology Officer, Aujas Networks

As the economy revives we take a look at the top IT management priorities for 2010 along with the challenges and prospects. Companies need to consider IT risk management in handling new markets, employee growth and productivity. This presentation gives a holistic view of managing your IT risk at every stage.

Read More

Emerging Disciplines of Security–Software & Application Security
by Sameer Shelke, Co-founder, Chief Operating Officer & Chief Technology Officer, Aujas Networks

This presentation takes a look at the application landscape and the gaps present in security. The need for a secure software development cannot be overemphasized. Each stage of the lifecycle has a certain scope for security processes to be involved thereby ensuring a secure application.

Read More

Our Psychology and Security: The way we think
by Sameer Shelke, Co-founder, Chief Operating Officer & Chief Technology Officer, Aujas Networks

Our Major Risk / Security weaknesses being Lack of acceptance of weaknesses / vulnerabilities, Low focus on risk management / operations, Marginalization of Compliance, Low focus on Privacy, Selective security focus –not looking at the complete picture and Low focus on Insider Threats, this presentation will take you through the ways to come out with solutions.

Read More

IT Risk Management Consideration for eGovernance
by Sameer Shelke, Co-founder, Chief Operating Officer & Chief Technology Officer, Aujas Networks

As eGovernance projects initiatives are launched to make all government services accessible through common service delivery outlets, there is a definite need to consider IT Risk Management for eGovernance. This presentation talks about the eGovernance functionality view, the risks involved, threats – insider and external, and a comprehensive approach and considerations for IT Risk Management in eGovernance.

Read More

IT Risk Management and Compliance – The Real Life
by Sameer Shelke, Co-founder, Chief Operating Officer & Chief Technology Officer, Aujas Networks

Risk Management and Governance have become critical themes today given the uncertain market, high incidence of threat and information security breaches. This presentation discusses how to have a sound IT GRC strategy for the organization based on the author's learning over the years as a Risk Management Consultant, IS Auditor and CISO.

Read More

Considerations for Application Security
by Yogesh Bhatia, Senior Consultant, Aujas Networks

Companies are now exposing their internal network and data through internet facing applications. These applications help organizations collaborate with their business partners and third party vendors. These enable organizations to carry out business more efficiently, but it also comes with inherent risks which are generally ignored until somebody hacks into the systems. This presentation speaks about why we need to worry about application security, what are the various things you can do and also touches upon the aspects of incorporating security as part of your Software Development Life cycle.

Read More

The de-perimeterization phenomenon – Protection at the Source
by Sameer Shelke, Co-founder, Chief Operating Officer & Chief Technology Officer, Aujas

Traditionally the focus on protection postures has been on the perimeter of an IT organization - the protection of network gateways, extranets or even between assets and internal users. The concept of perimeterization requires an asset to be protected/isolated/controlled against users in such a way that only legitimate access/use is allowed. However the need today is to focus on eradicating the weakness in the asset itself and this can be exploited using legitimate access methods. Hence the need is “protection at the source,” which is to secure data and the applications. This presentation focuses on these two concepts of “de-perimeterization and protection at the source"

Read More

Information Risk Management in Difficult Times
by Sameer Shelke, Co-founder, Chief Operating Officer & Chief Technology Officer, Aujas Networks

Given the overall economic slowdown, organizations today are expected to derive more out of their current IT investments. The risk factor is drastically increasing owing to lesser spend on security controls, operations budget reduction and fewer people managing security. This presentation talks about impact and challenges with IT Risk management and it outlines what could be done and the focus areas of IT Risk Management in difficult times.

Read More