White Papers / Data Sheets
Any
topic you'd like us to research?
Let us know!
White Papers
and Data Sheets
Over the years we have written several articles, research papers, and
data sheets about Information Technology Governance, Information
Security, IT Compliance, and the Information Security Industry.
In addition, our certifications bring us to do a lot of reading and
"keeping up" with technology. Below are links to
various documents you might be interested in. For other various articles you might want to check out our
blog.
Client Documents
- New Client Information Request (Audit Services)
- New Client Information Request (MSSP Services)
Customer Awareness
Forensic Investigation
Incident Response
Risk Management
- Guide to Computer Security Log Management (NIST)
- IT Audit / Assessment Services
- Log Monitoring
- Managed Security Services - The Basics
- Password Manifesto
- Top 5 Log Reports (SANS)
Regulations / Standards / Guidelines
- Code of Ethics (ISACA)
- GLBA - Subchapter I (FTC)
- GLBA - Subchapter II (FTC)
- HIPAA: Security Standards
- IS Standards, Guidelines and Procedures (ISACA)
Security Standards
Social Engineering
Social Media
Technical Reading
- Cloudy Daze (ISACA Journal)
- Risk Landscape of Cloud Computing (ISACA Journal)
User Awareness
- Auto-Reply Basics
- Awareness Training
- It's About Time
- Password Controls
- The Lowest Hanging Fruit
- The One Control
Vendor Management
Web Application Security Review
- Web Application Security Review Data Sheet
- OWASP Application Security Verification Standard
- OWASP Top 10 - 2010
About the Researchers
Dan Hadaway,
CISA, CISM
Dan has worked
extensively with banks and hospitals on GLBA/HIPAA training and policy issues, engaging on projects
ranging from IT Audits to Compliance Program Development. He has provided User
Awareness Training at all levels of the bank (Board, Management, IT, and User).
He is the Managing Partner of
infotex, an Indiana Bankers
Association
Preferred Service Provider in several areas,
including Information Security Training, Managed Security Services, Digital
Evidence Collection, and IT Audits.
Bobbette Fagel, CISA, CISM
Bobbette has worked with infotex since its inception, coming to us from the accounting firm (Bucheri McCarty and Metz LLP). Bobbette has been intimately involved in compliance projects for banks and hospitals, and is one of our foremost consultants on policy and procedure. She handles the quality control for all reporting: Vulnerability Assessments, Network Architecture Reviews, IT Audits, etc. As the Vice President of infotex, she directly supervises the NOC personnel and reviews all written materials produced by our team.
The Infotex Team
Check out the rest of our team here!
Infotex Portal Articles
