Qmunity: Your Colleagues. Your Connections. Your Content.
Sign in
|
Join
|
Help
|
NetIQ.com
H
OME
B
LOGS
F
ORUMS
N
OTIFICATIONS
G
ROUPS
N
ETIQ
S
UPPORT
Security Web
»
All Tags
»
SaaS
(
RSS
)
Security Web
Home
Contact
Follow Us
Follow us on Twitter
Follow us on Facebook
Syndication
RSS for Posts
Atom
RSS for Comments
Email Notifications
Go
Recent Posts
Who Needs Identity Infrastructure Anymore?
Has the Firewall Era Come to an End?
Perils of Credential Sprawl
My Thoughts on Dignan's Oracle, SAP rush to cloud: Can SaaS sprawl be too far behind?
Are IT Reseller’s Services Being Sidelined by the Cloud?
Tags
Access Control
BYOD
Cloud
Cloud Computing
cloud security
Compliance
Data Breach
Data Security
David Shephard
Geoff Webb
IAM
Identity and Access Management
IdM
IT process automation
IT Security
JeffCutler
Michael F. Angelo
NetIQ
PCI DSS
Renee Bradshaw
RSA
SaaS
Security
Security Web
SIEM
View more
Archives
May 2013 (5)
April 2013 (5)
March 2013 (3)
December 2012 (3)
November 2012 (8)
October 2012 (6)
September 2012 (6)
August 2012 (16)
July 2012 (5)
May 2012 (2)
March 2012 (8)
February 2012 (2)
January 2012 (2)
December 2011 (2)
November 2011 (2)
October 2011 (3)
July 2011 (7)
June 2011 (7)
May 2011 (7)
April 2011 (13)
March 2011 (6)
February 2011 (6)
December 2010 (2)
November 2010 (3)
October 2010 (1)
September 2010 (1)
August 2010 (4)
July 2010 (2)
June 2010 (7)
May 2010 (3)
April 2010 (3)
March 2010 (9)
February 2010 (4)
January 2010 (1)
December 2009 (1)
November 2009 (1)
October 2009 (1)
September 2009 (2)
August 2009 (3)
July 2009 (3)
June 2009 (3)
May 2009 (5)
April 2009 (7)
March 2009 (6)
February 2009 (8)
January 2009 (10)
Access Authorization
Access Control
Access Gateway for Cloud
Access Management
AT and T
Audit
Audit Reporting
Authentication
BaberAmin
Between the Lines
Billmelater
Breach
Business Continuity
BYOD
Channel
CISO
Cloud
Cloud Application
Cloud Application Security
Cloud Computing
cloud security
Compliance
CompTia
Consultant
Consumerization
Cox Communications
Credentials
DaleOlds
Dark Reading
Data Center
data centric
David Shephard
Diane Sawyer
Dow Jones
Elastic Cloud Computing
Employees
Enterprise Resource Planning
ERP
Facebook
Federated Identity
Forrester Research
Ghost in the Machine
Google
HaaS
Hack
hosted service
IaaS
IAM
Identity and Access Management
Identity Federation
Identity Management
Informationweek
Infrastructure as a Service
Interfaces
iPad 3G
ISO 27001
IT
IT Channel
JeffCutler
John Kindervag
Justin Pirie
Kent Purdy
Larry Dignan
LinkedIn
Michael F. Angelo
NetIQ
Open Source
PaaS
PDA
Phones
RSA
RSA Conference Europe
RSA Europe
SaaS Sprawl
Security
Security as a Service
Security Web
Service Providers
SIEM
SIM
SIM Card
single sign-on
Small Medium Business
SMB
Social Engineering
Social Media
Solution Provider
Sony
Spyrus
SSO
State of Cloud Computing
SuccessFactors
T
trusted
Trusted Users
Virtulization
Wes Heaps
White House
Wireshark
Yahoo
Who Needs Identity Infrastructure Anymore?
In some ways—the identity and access management world is more abstract than art nowadays. Identity and access management are mostly services, not hardware devices. Sure - all those services are still running on hardware somewhere - no matter how...
Published
Mon, Apr 04 2013 11:52 AM
by
Wes Heaps
Filed under:
Cloud Computing
,
Cloud
,
SaaS
,
Service Providers
,
IAM
,
Identity Management
,
Identity and Access Management
,
Access Management
,
Wes Heaps
,
Security Web
,
Privileged User
,
Ghost in the Machine
Has the Firewall Era Come to an End?
If you’re in IT, there’s a good chance that you’re expending a lot of time and money on the latest, high-end firewalls to keep information in and intruders out. An ironic reality to that fact is that at the same time your business is...
Published
Fri, Nov 11 2012 5:54 PM
by
Kent Purdy
Filed under:
Access Control
,
SaaS
,
Access Management
,
Access Authorization
,
BYOD
,
Security Web
Perils of Credential Sprawl
Last week’s report of Yahoo’s hacked passwords is yet another notch to the 2012 list of breached cloud hosted services; how many weeks has it been since LinkedIn? These notches are excellent reminders of how exposed these SaaS applications...
Published
Tue, Jul 07 2012 3:21 PM
by
Kent Purdy
Filed under:
LinkedIn
,
Cloud
,
SaaS
,
Breach
,
Hack
,
Yahoo Voices
,
Yahoo
,
Credentials
,
Authentication
,
Passwords
,
Employees
,
Kent Purdy
,
Security Web
My Thoughts on Dignan's Oracle, SAP rush to cloud: Can SaaS sprawl be too far behind?
In talking about current Enterprise Resource Planning (ERP) market trends related to SaaS, Larry Dignan’s recent 'Between the Lines' blog post on ZDNet mentions the potential for SaaS sprawl. Talk about deja vu. It wasn’t that many...
Published
Wed, Mar 03 2012 6:45 PM
by
Kent Purdy
Filed under:
Security
,
cloud security
,
Cloud
,
SaaS
,
Data Center
,
SaaS Sprawl
,
SAP
,
Operational Expenditure
,
ERP
,
OPEX
,
VM
,
LoB
,
Larry Dignan
,
ZDNet
,
Lines of Business
,
Between the Lines
,
Virtual Machine
,
Enterprise Resource Planning
,
Oracle
,
Kent Purdy
,
Security Web
Are IT Reseller’s Services Being Sidelined by the Cloud?
Even though businesses are increasingly adopting SaaS based solutions, they still need trusted technical advisors guiding them through the pitfalls of this latest transition. As the entire IT channel knows, the explosion of SaaS based applications is...
Published
Mon, Mar 03 2012 12:49 AM
by
Kent Purdy
Filed under:
Security
,
NetIQ
,
Cloud Computing
,
Policy Management
,
Cloud
,
SaaS
,
Audit
,
single sign-on
,
Cloud Application
,
Cloud Application Security
,
SSO
,
Value-Added Reseller
,
Consultant
,
Solution Provider
,
VAR
,
SMB
,
IT Channel
,
Channel
,
Access Gateway for Cloud
,
Small Medium Business
,
CompTia
,
Kent Purdy
,
Security Web
My Security Thoughts Around Informationweek's Cloud Survey
Recently I was reviewing the results of Informationweek’s annual State of Cloud Computing survey that comes out each February. The results mirror other cloud surveys that I’ve read so it’s worth a look. Although the bulk of the survey...
Published
Thu, Feb 02 2012 8:55 AM
by
Kent Purdy
Filed under:
Security
,
Cloud Computing
,
Cloud
,
SaaS
,
PaaS
,
IaaS
,
unauthorized access
,
hosted service
,
Platform as a Service
,
State of Cloud Computing
,
Informationweek
,
Infrastructure as a Service
,
Kent Purdy
,
Security Web
Questions & Answers from The Zero Trust Model - Putting Data Protection First
On June 30th we hosted along with leading online resource for information security professionals, Dark Reading , the webcast The Zero Trust Model: Putting Data Protection First with guest speaker John Kindervag , Senior Analyst at Forrester Research,...
Published
Wed, Jul 07 2011 12:55 PM
by
David Shephard
Filed under:
Security
,
Forrester Research
,
PCI DSS
,
NetIQ
,
SC Magazine
,
RSA
,
Verizon Breach Report
,
John Kindervag
,
Cloud
,
SaaS
,
PaaS
,
CISO
,
Log Files
,
Breach
,
Sony
,
Social Engineering
,
Identity Management
,
Zero Trust
,
NAV
,
IT
,
trusted
,
Trusted Users
,
Networks
,
Dark Reading
,
SIM
,
log data
,
Wireshark
,
Interfaces
,
data centric
,
PlayStation Network
,
SIEM
,
Cox Communications
,
Multitenancy
,
IaaS
,
Security as a Service
,
David Shephard
,
Security Web
Erasure? The End Game, A Cloud Security Question.
A few weeks back we started talking about how you can ‘interview’ your cloud service provider to find out if their operation is the one that works best for your enterprise. Does it keep your data secure and available. Can you access it when...
Published
Mon, Apr 04 2011 3:13 PM
by
JeffCutler
Filed under:
Security
,
Compliance
,
Cloud
,
SaaS
,
Business Continuity
,
JeffCutler
,
Security Web
Consumerization Continued… A Prequel to Security Implications of Personal Computers (part two).
In my last blog post I said I would talk about data classification and security configurations in this one. When considering Consumerization and data classification it is important to take into account Data Blending and Information Leakage. Data Blending...
Published
Mon, Feb 02 2011 6:56 AM
by
Michael F. Angelo
Filed under:
NetIQ
,
RSA
,
RSA Conference Europe
,
Consumerization
,
Michael F. Angelo
,
Phones
,
Virtulization
,
LinkedIn
,
PDA
,
HaaS
,
RSA Europe
,
Social Media
,
Cloud
,
Open Source
,
SaaS
,
PaaS
,
Elastic Cloud Computing
,
Security Web
Consumerization Continued....A Prequel to Security Implications of Personal Computers
The great thing about the computer industry is that we are our own lexicographers. Unfortunately as such we work backwards. That is we make up the new word and then try to figure out what it means. Such is the case with Consumerization. How do I define...
Published
Mon, Nov 11 2010 8:42 AM
by
Michael F. Angelo
Filed under:
NetIQ
,
RSA
,
RSA Conference Europe
,
Ron Lapedis
,
Consumerization
,
Michael F. Angelo
,
Phones
,
Billmelater
,
Facebook
,
Virtulization
,
LinkedIn
,
PDA
,
HaaS
,
Spyrus
,
RSA Europe
,
Social Media
,
Cloud
,
Open Source
,
SaaS
,
PaaS
,
Twitter
,
Paypal
,
Elastic Cloud Computing
,
Security Web
Protecting Identities in the Cloud
Last month, an AT&T security loophole allowed the e-mail addresses of 114,000 iPad 3G subscribers, including those of White House Chief of Staff Rahm Emanuel, journalist Diane Sawyer and Dow Jones CEO Les Hinton, to be exposed. How can such a blatant...
Published
Thu, Aug 08 2010 6:38 PM
by
BaberAmin
Filed under:
Risk Management
,
cloud security
,
SaaS
,
Breach
,
single sign-on
,
Lawses Hinton
,
SAML
,
Diane Sawyer
,
iPad 3G
,
SSO
,
Identity Federation
,
SIM Card
,
White House
,
Dow Jones
,
Rahm Emauel
,
T
,
BaberAmin
,
Security Web
,
AT and T
Hosters Need to Think about Identity as a Platform Play
The pressure on SaaS vendors and others to address issues of identity is being driven by the fact that anyone can build a SaaS application and put it out there and then anyone in a corporation can whip out a credit card and sign up to use it. Thanks to...
Published
Mon, Jun 06 2010 7:00 PM
by
DaleOlds
Filed under:
Security
,
Compliance
,
Google
,
SaaS
,
Identity Management
,
Identity and Access Management
,
SaaS Sprawl
,
OpenID
,
Audit Reporting
,
Federated Identity
,
Salesforce
,
SAML 2
,
DaleOlds
,
Security Web
The Real Problem with SaaS Security
There are likely SaaS vendors out there who have not adequately secured their applications and there are definitely SaaS vendors who could do a better job at it. However, the real problem with SaaS security has little do with either of these situations...
Published
Tue, Mar 03 2010 7:18 PM
by
MatthewTGrant
Filed under:
Security
,
cloud security
,
Cloud
,
SaaS
,
Wal-Mart
,
SuccessFactors
,
Matthew T Grant
,
SAS 70
,
ISO 27001
,
Justin Pirie
,
Mimecast
,
MatthewTGrant
,
Security Web
Home
|
Terms of Use
|
Privacy Policy
|
NetIQ.com
|
Attachmate.com
NetIQ, an Attachmate Business