ANX Corporate Blog

Day 1 of RSA is in full swing, and I've already learned some great information.  One of my favorite topics these days is best practices for passwords.  Last year I was a victim of password theft.  My personal Gmail account was hacked.  After a day of having my friends and acquaintances bombed with spam from my account, I vowed to do a better job with my passwords.

During a session this morning, I heard a great suggestion for creating a complex password that's difficult to hack and easy to remember.  There are three elements as follows:

1.  Pick a unique phrase that's memorable to you only.  Something like, "Bill's girlfriend is from Spain".  Now, take the first letter from each word in the phrase.  In this example, it would be "bgifs".

2.  Add a non-alpha character - let's...

Read more

Convenient, online course shows cashiers how to clearly recognize fraudulent payment cards and comply with security standards

SOUTHFIELD, Mich. (February 7, 2011) – ANXeBusiness Corp. (ANX), a provider of networking and security managed services, today announced the new Cashier Security Awareness Training component of its TruPCI Compliance Management Solution. Created to help Level 4 Merchants meet PCI DSS Requirement 12.6.1, “Educate personnel upon hire and at least annually,” ANX Cashier Security Awareness Training differs from traditional courses by focusing on the unique needs of cashiers.

This brief, online course covers critical merchant security issues, teaching cashiers how to:

• Identify fraudulent credit/debit cards
• Protect sensitive areas and...
  
  Read more

What does 2011 hold in store for your GRC program? My first three predictions were:

Prediction #1: Greater Focus on Risk Management Capabilities
Prediction #2: Redeployment of Internal Resources
Prediction #3: Self-Service for Greater Efficiency
Prediction #4: Increase Use of Contract / Vendor Management

Read below for my final prediction for 2011 GRC programs.

Prediction #5 | SaaS Overtakes Software

It’s no secret the traditional favorite of clients is to implement an on-premise solution.  However, in 2011, more than 50% of new implementations will leverage a SaaS delivery model for GRC.  In today’s economy, when organizations are able to take advantage of lower operating costs, faster time to value, less implementation risk, more flexibility, and less vendor risk when...

Read more

What does 2011 hold in store for your GRC program? My first three predictions were:

Prediction #1: Greater Focus on Risk Management Capabilities
Prediction #2: Redeployment of Internal Resources
Prediction #3: Self-Service for Greater Efficiency

Read below for my fourth prediction for 2011 GRC programs.

Prediction #4 | Increase Use of Contract / Vendor Management

As regulatory requirements expand, usage of the ‘cloud’ and SaaS technologies grows, and the number of obligations imposed by business partners increase, 2011 will show that leading organizations will need to utilize an enterprise-wide vendor risk management process and control library.  I believe we will see an upward trend in organizations using standard vendor assessments and leveraging industry frameworks, such...

Read more

What does 2011 hold in store for your GRC program? My first two predictions were:

Prediction #1: Greater Focus on Risk Management Capabilities
Prediction #2: Redeployment of Internal Resources

Read below for my third prediction for 2011 GRC programs.

Prediction #3 | Self-Service for Greater Efficiency

GRC staff such as risk, compliance, internal audit, and security personnel define the rules of the game and referee but line managers execute the majority of GRC activity.  In 2011, leading organizations will empower line managers with the technology and corporate-approved processes and content they need to plan and execute their own GRC initiatives, ultimately reducing the cost of GRC and blending it more seamlessly with the organization.

I believe that organizations who...

Read more