It seems that only the super-large companies care about brand. Addressing this matter from a "security" perspective seems odd since I'd say it was more closely aligned with the firm's legal department than anyone else. Just because it was YouTube doesn't mean you need a video expert to assess exposure.
Certainly, if it's on the wire IT should know about but only if it's filtering into their protected environment. Monitoring Internet propagation in the wild seems to be a bit out of CSO job description. Again this is a due diligence gig for the barrister-types. And, lastly, considering the porous network perimeters and lack of policies we see on a routine basis, becoming distracted with a silly video is a waste of resources....in my opinion.
Not a video expert, but I think the security dept's expertise in investigation and in takedown (think phishing sites) can contribute, depending on the circumstances.
At any rate some very smart & accomplished CSOs are expanding "the CSO job description".
Having been the CISO at The American Red Cross starting with September 11 and up through Hurricanes Katrina and Rita, brand protection was a significant part of the job. The level of Internet-related fraud sophistication evolved during these timeframes/events and the Red Cross was a huge target. During Katrina I was embedded with the FBI's Internet Crime Complaint Center addressing fraudulent activities. Shortly before and immediately after the hurricane hit the Louisiana coast, there were over 2300 Internet domains registered with "Katrina" in the name. This was and continues to be an interesting topic.
Having been the CISO at The American Red Cross starting with September 11 and up through Hurricanes Katrina and Rita, brand protection was a significant part of the job. The level of Internet-related fraud sophistication evolved during these timeframes/events and the Red Cross was a huge target. During Katrina I was embedded with the FBI's Internet Crime Complaint Center addressing fraudulent activities. Shortly before and immediately after the hurricane hit the Louisiana coast, there were over 2300 Internet domains registered with "Katrina" in the name. This was and continues to be an interesting topic.
Having been the CISO at The American Red Cross starting with September 11 and up through Hurricanes Katrina and Rita, brand protection was a significant part of the job. The level of Internet-related fraud sophistication evolved during these timeframes/events and the Red Cross was a huge target. During Katrina I was embedded with the FBI's Internet Crime Complaint Center addressing fraudulent activities. Shortly before and immediately after the hurricane hit the Louisiana coast, there were over 2300 Internet domains registered with "Katrina" in the name. This was and continues to be an interesting topic.
This is a very interesting article since my work has been in the reputation-building and recovery area. We also found in recent research that we did among global executives that 67% of executives consider their company reputations vulnerable (www.online-reputations.com). You are absolutely right that technology has made it next to impossible to secure reputation fraud. Thanks for the information. Best, lgr
Brand Protection: The Expanding CSO Portfolio
Security finds itself increasingly entrenched in the brand protection battle against counterfeit good, phishing email and other threats.
» View Article
It seems that only the super-large companies care about brand. Addressing this matter from a "security" perspective seems odd since I'd say it was more closely aligned with the firm's legal department than anyone else. Just because it was YouTube doesn't mean you need a video expert to assess exposure.
Certainly, if it's on the wire IT should know about but only if it's filtering into their protected environment. Monitoring Internet propagation in the wild seems to be a bit out of CSO job description. Again this is a due diligence gig for the barrister-types. And, lastly, considering the porous network perimeters and lack of policies we see on a routine basis, becoming distracted with a silly video is a waste of resources....in my opinion.
Not a video expert, but I think the security dept's expertise in investigation and in takedown (think phishing sites) can contribute, depending on the circumstances.
At any rate some very smart & accomplished CSOs are expanding "the CSO job description".
Having been the CISO at The American Red Cross starting with September 11 and up through Hurricanes Katrina and Rita, brand protection was a significant part of the job. The level of Internet-related fraud sophistication evolved during these timeframes/events and the Red Cross was a huge target. During Katrina I was embedded with the FBI's Internet Crime Complaint Center addressing fraudulent activities. Shortly before and immediately after the hurricane hit the Louisiana coast, there were over 2300 Internet domains registered with "Katrina" in the name. This was and continues to be an interesting topic.
Having been the CISO at The American Red Cross starting with September 11 and up through Hurricanes Katrina and Rita, brand protection was a significant part of the job. The level of Internet-related fraud sophistication evolved during these timeframes/events and the Red Cross was a huge target. During Katrina I was embedded with the FBI's Internet Crime Complaint Center addressing fraudulent activities. Shortly before and immediately after the hurricane hit the Louisiana coast, there were over 2300 Internet domains registered with "Katrina" in the name. This was and continues to be an interesting topic.
Having been the CISO at The American Red Cross starting with September 11 and up through Hurricanes Katrina and Rita, brand protection was a significant part of the job. The level of Internet-related fraud sophistication evolved during these timeframes/events and the Red Cross was a huge target. During Katrina I was embedded with the FBI's Internet Crime Complaint Center addressing fraudulent activities. Shortly before and immediately after the hurricane hit the Louisiana coast, there were over 2300 Internet domains registered with "Katrina" in the name. This was and continues to be an interesting topic.
This is a very interesting article since my work has been in the reputation-building and recovery area. We also found in recent research that we did among global executives that 67% of executives consider their company reputations vulnerable (www.online-reputations.com). You are absolutely right that technology has made it next to impossible to secure reputation fraud. Thanks for the information. Best, lgr
Dirty Tricks: Social Engineers' Favorite Pickup Lines
Tabletop Exercises: 3 Sample Scenarios
19 Ways to Build Physical Security Into Your Data Center
Get instant notifications when whitepapers, webcasts and case studies are added to our library. Sign up for a Resource Alert now!
CSO Corporate Partners
» More blogs
CSO Perspectives
Santa Clara, California
(ISC)2 members can earn up to 24 CPE Credits!
Trend Micro ranked #1 against real-world malware. Read more.
64-page prescriptive guide to security, compliance, and IT operations.
Removing Barriers To Better Server Virtualization Efficiency
Mining for Gold: Cybercrime Prevention and the Role of Log Management
The Executive Guide to Data Loss Prevention
Organizations can spend up to 50% more on compliance efforts than necessary.
White Paper: A Security Blueprint Delivered From within the Network
Read the RSA report: Security for Business Innovation
Upgrading to VMware vSphere with vWire
Explore the increasing importance of log management as cybercrime threats grow.
The Tripwire HIPAA Solution: Meeting the Security Standards Set Forth in Section 164
Implementing Best Practices for Web 2.0 Security
Five Ways to Reduce Your IT Audit Burden
THE IDG NETWORK