Paul Calento, Senior Vice President/Strategic Development at InfoWorld Media Group and Kevin Bocek, Senior Product Marketing Manager at PGP Corporation, discuss enterprise data protection beyond the endpoint.

In this podcast, they will be discussing enterprise data protection beyond the endpoint, specifically why you should care about endpoint data security, PGP solutions, as well as whether or not protecting data is only about locking down the device.

Paul Calento, Senior Vice President/Strategic Development at InfoWorld Media Group and Doris Yang, Product Manager at PGP Corporation, discuss mobile encryption solutions.

In this podcast, they will be discussing trends driving mobile device encryption, various PGP solutions, as well as why the windows mobile platform is simply not enough when looking at a mobile encryption solution.

Paul Calento, Senior Vice President/Strategic Development at InfoWorld Media Group and Bryan Gillson, Director of Business Development at PGP Corporation, discuss email encryption.

In part I of this podcast series they will be discussing key components of email encryption solution, customer challenges and industry trends.

Paul Calento, Senior Vice President/Strategic Development at InfoWorld Media Group and Bryan Gillson, Director of Business Development at PGP Corporation, discuss email encryption.

In part 2 of this podcast series they will be discussing maturation of email encryption approaches, solution complexities perceived, as well as tips for evaluating an email encryption solution for your organization.

Michael Osterman of Osterman Research and John Dasher of PGP Corporation discuss where marketing is going for encryption solutions and what is being done to meet those changes.

In this PGP Podcast, Michael Osterman and PGP Director of Products Management, John Dasher, discuss the importance of email encryption and why customers and prospects are considering deploying encryption within their organizations.  Also, they will discuss solutions for decrypting email for recipients that do not have PGP software as well as marketing changes over the next 12-24 months.

Dr. Ponemon and Kevin Bocek of PGP Corporation discuss changes in how organizations are coping with continuing losses of corporate and personal data.

An interview with Larry Ponemon, founder and director of the Ponemon Institute. Dr. Ponemon talks with Kevin Bocek, senior manager of PGP Product Marketing, about the findings of the third-annual “U.S. Cost of a Data Breach” study recently published by the Ponemon Institute. They discuss how organizations have become more sophisticated in their response to data breaches and the relative effectiveness of different remediation strategies. Dr. Ponemon explores his finding that breaches committed by information outsourcers on behalf of their clients are not only on the rise but are significantly more expensive to resolve. Also, Dr. Ponemon is about to release his first "Cost of a Data Breach" study done in the U.K., and he and Kevin review some of his preliminary findings.

Chris Leach, Sr. VP and chief information security officer for ACS, discusses the challenges of providing IT data security at a global outsourcing provider.

In this podcast, Chris Leach, ACS senior vice president and chief information security officer, talks with Christian Kirsch of PGP Corporation's Product Marketing group about the IT challenges facing this Fortune® 500 business process outsourcer. Chris also describes the key considerations that went into developing the company's enterprise data protection strategy, including his views on the importance of establishing and communicating return on investment (ROI) data for IT security investments.

Sharon Finney, IT security manager for the DeKalb Medical Center, discusses the realities of information security in the health care industry.

Few business sectors are impacted by information security regulation more than health care. However, Sharon Finney, IT security manager for the DeKalb Medical Center, believes that if end users are unaware the IT Security department even exists, then she will have done her job. Ms. Finney feels that information security works best when it works transparently and that employees should be empowered to perform their own duties without having to worry about violating IT security regulations.

In this PGP Podcast, you’ll hear about the extensive compliance requirements facing modern hospitals and learn how the IT security staff at DeKalb focuses on meeting these demands in a way that doesn’t impact patient care. Sharon also talks in detail about how and why the medical center decided to secure email communications with business partners and patients.

Michael Osterman of Osterman Research and Fara Yassini of PGP Corporation discuss why and how modern organizations can secure their email communications.

Over 180 billion email messages are sent every day by nearly 1.2 billion email users. A large majority of those messages are sent in the clear, and, corporate IT security managers are now beginning to understand that the sensitive corporate data that flows in and out of enterprise email systems represents a real risk for their companies. Michael Osterman founded Osterman Research, Inc. in 2001. The company has become one of the leading analyst firms focusing on electronic messaging, email, and collaboration. They provide a wide range of research services for companies like Microsoft, America Online, Sun Microsystems, Google, EMC, and Hewlett Packard. In this PGP Podcast, Michael and PGP Marketing Manager, Fara Yassini, discuss the risks associated with corporate electronic mail. And, they explain how those risks can now be minimized by adopting security best practices and the deploying modern, enterprise-wide, email encryption and digital signing solutions.

Jon Allen, information security officer for Baylor University, describes the project to secure laptop computers for faculty and staff members at the university.

In addition to being perhaps the largest and most visible of our educational institutions, colleges and universities have also become large businesses. That's why the history of IT security breaches also includes the names some of well-known universities. Because of the open nature of college campuses and the tradition of academic freedom, IT managers for these institutions face some unique challenges when it comes to protecting the data assets of the university and its staff, faculty, and students.

Jon Allen, information security officer at Baylor University, recently led the effort to implement a full disk encryption solution to secure confidential data on laptop computers. In this PGP Podcast, he explains why and how the university embarked on this project to secure faculty and staff portable computers.

Richard Clarke, former Presidential cyber security advisor, discusses how state and local government agencies can prepare themselves to combat the threats of cyber-terrorism.

Richard Clarke is an internationally recognized expert on security and counter-terrorism. He worked in government service for more than 30 years in the Department of Defense, the State Department, and as a senior White House Advisor for the last three Presidents. Mr. Clarke served as the National Coordinator for Security and Counterterrorism, and as Special Advisor to the President for Cyber Security. He is currently the Chairman of security firm Good Harbor Consulting and is the author of several books, including his latest novel, Breakpoint.

In this episode of PGP Podcasts, Richard Clarke talks with Doug McLean, Vice President for Emerging Markets Channels at PGP Corporation. They discuss how state and local government IT organizations are attempting to deal with privacy issues and with the threats related to cyber-terrorism. He also assesses the effectiveness of our current response to cyber-terrorism. In addition, he addresses recent news stories alleging that some organizations in China are already engaging in cyber-attacks on the U.S.

Colleen Ebel on Implementing Encryption

A conversation with Colleen Ebel, CISO of the University of Florida Health Science Center, on why and how it has implemented an enterprise-wide program of laptop encryption.

The University of Florida Health Science Center is a word leader in medical and health science research. The Center's six affiliated colleges teach more than 6,000 students per year in a wide variety of medical disciplines. The Health Science Center IT department finds itself in a challenging role because it needs to meet the information and security needs of both an academic institution and a health care provider.

This episode of PGP Security Podcasts features a conversation with Colleen Ebel, the Chief Information Security Officer (CISO) for the University of Florida Health Science Center. The Center has recently implemented a strategy to encrypt all portable computers. Colleen will discuss why the Center decided to take this step, what planning considerations were most important, and how it evaluated encryption products. She'll also review some lessons learned from the implementation. You'll find the Center's experiences interesting and informative, especially if you're considering a similar strategy.

Latest Data Breach Research with Dr. Larry Ponemon

Dr. Larry Ponemon, of The Ponemon Institute, discusses the latest research into the effects of compromised and breached data on customer loyalty and corporate IT security practices.

Dr. Ponemon is a pioneer in the development of privacy audits, privacy risk management, and ethical information management. He is frequently quoted in articles on privacy, data security, and business ethics by The Wall Street Journal, The New York Times, the Washington Post, and many others. Dr. Ponemon is the founder and director of The Ponemon Institute, which is dedicated to developing research and best practices related to data security and data protection. In this episode of PGP Security Podcasts, Kevin Bocek, director of PGP Product Marketing, talks with Dr. Ponemon about the findings of his latest research. They'll discuss updates related to the most recent "Cost of a Data Breach" study, including an assessment of how customers react to learning their personal information has been compromised and how corporations typically respond to significant breaches. They'll also compare how attitudes about these issues differ between U.S. and European companies

Interview with Philip Casesa of (ISC)²

(ISC)² is the worldwide leader in educating information security professionals. In this interview, Philip Casesa explains how an organization responsible for training IT security staff views its own security requirements.

(ISC)² is recognized as a worldwide leader in educating information security professionals throughout their careers. Founded in 1989, it has certified thousands of IT security professionals around the world. Philip Casesa, IT operations manager for (ISC)², joins us to explain how an organization entrusted with educating security professionals around the globe views its own data security strategy. Philip will explain how (ISC)² protects its intellectual property and brand and also discuss how recent security breaches have sparked a new wave of security thinking at (ISC)².

Phil Dunkelberger: The Insanity of Enterprise Security

Phil Dunkelberger, president and CEO of PGP Corporation, speaks out on the challenges facing IT security professionals at the InfoWorld Enterprise Data Protection Executive Forum in New York.

On June 26, Phil Dunkelberger, president and CEO of PGP Corporation, gave a presentation to senior IT managers at the InfoWorld Enterprise Data Protection Executive Forum in New York.

Titled "The Insanity of Enterprise Security," Phil's presentation described how members of his audience—who are faced with an increasingly complex and threatening IT landscape—were continually being asked to do more with less.

Phil describes recent research that reveals the high costs associated with lost customer data and explains why investing in a unified corporate strategy for Enterprise Data Protection represents good fiscal policy.

Jon Callas: Enterprise Data Protection

Jon Callas continues our discussion of Enterprise Data Protection and its implications in securing valuable data in corporate and government IT organizations.

Enterprise Data Protection is a term that's being used in the IT security community to describe a comprehensive approach to protecting corporate, customer, and personal data.

A few weeks ago, we talked with Jim Reavis of the Reavis Consulting Group about this idea of Enterprise Data Protection. We thought it would be interesting for you to hear a different perspective on this subject, so we've asked Jon Callas to join us. Jon is the Chief Technology Officer and Chief Security Officer for PGP Corporation. In this podcast, he is interviewed by Dave De Jear, director of public relations for PGP Corporation.

In addition to defining, describing, and clarifying this concept of EDP, they'll also discuss it in the context of some recent and noteworthy security news stories.

Jim Reavis: Insider Threats to Data

Security expert Jim Reavis discusses the problem of insider threats to data security.

This podcast is the second of our two conversations with Jim Reavis, president of the Reavis Consulting Group. In it, Jim talks with Dave De Jear, director of public relations for PGP Corporation, about the insider threat to corporate data. He discusses the scope of the problem and talks about the barriers that sometimes prevent companies from dealing with such threats effectively. Jim also passes along a couple of insider threat war stories that are "ripped from the headlines" and describes what companies can do "post compromise" to attenuate the problem. Finally, in what has become a signature part of his approach to dealing with these issues, he gives us his top 10 list of things companies should know about insider threats to data.

Phil Dunkelberger: CBS Interview on Encryption

Phil and Larry Magid of CBS News discuss recent breaches and the role of encryption in preventing data loss.

Phil Dunkelberger, president and CEO of PGP Corporation, was recently interviewed by Larry Magid of CBS News. Magid observes that the news has been filled with stories about the loss of important computer data by government agencies, including the IRS.

Phil and Larry discuss the importance of these data breaches and explore the ways encryption technology can play a role in protecting valuable data. Phil describes how encryption can be deployed and managed, and he explains how some encryption solutions can affect the user experience. They also discuss how the deployment of encryption should be combined with good management practices to ensure data is protected at all times.

Jim Reavis: Enterprise Data Protection

"Enterprise Data Protection" is a new term in IT Security. Jim Reavis explains what it means and why it's important.

Jim Reavis is president of the Reavis Consulting Group. He has worked in IT security as an entrepreneur, writer, speaker, technologist, and business strategist for nearly two decades. He advises some of the country's most successful companies on both traditional and information security issues.

"Enterprise Data Protection" is a relatively new expression that is increasingly being used in the IT community to describe the strategies required to protect corporate and personal data. In this telephone conversation with Andrew Krcik, vice president of marketing for PGP Corporation, Jim helps to define Enterprise Data Protection (EDP). He talks about the trends driving EDP, discusses the risks when companies settle for something less than a comprehensive EDP plan, and outlines the 10 most important things that IT managers should know about Enterprise Data Protection.

Phil Zimmermann: Perspectives on Privacy

Phil Zimmermann discusses his views on privacy and data security.

In 1991, Phil Zimmermann created a software program that enabled individuals to encode their email using the strongest encryption methods available. He had been active in the peace movement and was concerned that governments intended to prevent individuals from having access to strong encryption technologies. PGP software (PGP stood for "Pretty Good Privacy") was uploaded to a few bulletin board systems and subsequently downloaded by computer users around the globe. In 1993, the U.S. Customs Service began to investigate Zimmermann for a violation of the Arms Export Control Act. After 3 years, he was never charged and the investigation was terminated. Phil, and others, went on to found PGP, Inc., the precursor to today's PGP Corporation. In this PGP Security Podcast, Zimmermann talks with Jon Callas, CTO and CSO of PGP Corporation, about the factors that motivated him to create PGP as well as how privacy issues and concerns have evolved with the growth of the Internet.

Rhonda MacLean: the TJX Breach

Lessons from the TJX breach of 45 million customer records

On January 17, the TJX companies issued a press release stating it had "suffered an unauthorized intrusion into its computer systems..." Two months later, it became clear this was the largest computer breach in history, and at least 45 million credit and debit card numbers were compromised. In this podcast, Rhonda MacLean, founder of MacLean Risk Partners LLC and former leader of Bank of America's Corporate Global Information Security Group, discusses the issues behind the TJX breach and describes how other companies can work to avoid a similar breach of customer data. She is interviewed by Andrew Krcik, vice president of marketing for PGP Corporation. (MP3 File: 27'31" / 12.6MB)

Bruce Schneier at RSA 2007

Trends in information security for 2006 & predictions for 2007

On February 8, Bruce Schneier spoke to a group at the 2007 RSA Conference in San Francisco. He reviewed the highlights and trends in the security landscape for 2006 and made some predictions about what we can expect to see in 2007.

Topics Bruce discussed included increased use of encryption, standards for storage and server encryption, the viability of identity-based encryption, adoption of secure coding practices, and other issues of interest to the information security community.

Dr. Larry Ponemon at RSA 2007 

Latest research: how enterprises plan for & deploy encryption

On February 7, Dr. Larry Ponemon of The Ponemon Institute spoke to a group at the 2007 RSA Conference in San Francisco. Dr. Ponemon is considered by many to be the leading researcher into the implications, costs, and practices associated with data security, privacy, and identity theft.

In this presentation, he discussed the findings of his latest research into how enterprise IT organizations plan for and implement encryption technology. He also explored best practices related to the use of encryption as a key component in an enterprise data protection strategy.

Howard Schmidt at RSA 2007

Past White House Cyberspace Security czar: security threats to watch

Howard Schmidt served as the White House Cyberspace Security czar from 2001 to 2003. He has been the chief security officer at Microsoft and eBay, and is the current president of the Information Systems Security Association (ISSA).

In this talk on February 6 at the 2007 RSA Conference, Howard shared his views on trends in the threat environment that deserve special attention. He also discussed how threats have evolved, the increase in attacks on applications, problems with peeer-to-peer, and the aggregation of stolen data for sale worldwide.

Phil Dunkelberger at the Commonwealth Club

On September 17, 2006, Phil Dunkelberger, president and CEO of PGP Corporation, spoke to the Commonwealth Club of California in San Francisco. He addressed the topic of safety in cyberspace and explained how the Internet security threats we read about in the news can affect all of us. Scanning the headlines makes it clear that his cautionary message is even more relevant today.

Tom Waller, Chair of the Business and Leadership Forum of the Commonwealth Cub, introduces Mr. Dunkelberger.