Wednesday, May 22, 2013 Register
Home

Tools
       Security Program Review 

News
       CISO News Feed
       Upcoming Events

Resources
       Propulsion Application
       CISO Security Links
       Project Manager Security
       Security Program Development
          Security Program Considerations
             Organizational Drivers
             Security Strategy
             Mission & Mandate
             Roles & Responsibilities
             Security Policies
             Training & Awareness
          Statistics & Metrics
          Regulations
          Ask The Experts a Question
       Glossary and Definitions

Publications
       Articles
          Outsource Repeatable Tasks, NOT Complete Roles

Research
       Security Leader Self Assessment
       Security Stress Survey
       New Security Survey

About Us

Contact Us
You are hereAbout Us  
About CISOHandbook.com
CISOHandbook.com was initially created in 2004 by Mike Gentile and Ron Collette as an information companion for the book “The CISO Handbook, A Practical Guide to Securing Your Company.” In the beginning, the core focus was primarily on tools that could help security managers or executives with the challenges and opportunities they faced in the performance of their daily jobs.
 
Over time, the emphasis of the site has shifted more and more to the concepts associated with Security Program Development. As a result, though the content is still geared to the security manager, the wider focus now enables value for security professionals of all levels within an organization.
 
Web-site Facts: 
  • Created in 2004
  • Membership in over 30 countries
  • Membership includes security professionals from many of the Global 2000
For inquiries:
E-mail:             info@cisohandbook.com
Support:         (949) 334-3601 Extension 100
Advertising:    (949) 334-3601 Extension 102
 
Editors
 

 

 
Mike Gentile, CISSP

Mike is a recognized researcher, speaker, and innovator in the field of information security. He is often invited to present at conferences on topics ranging from Security Program Development to Project Management. For the last three years, he has been selected out of a field of 2400 to present at the most prestigious security conference in the United States; RSA San Francisco. Recently, he has written articles for the ISSA Journal, Computer Economics, and Secure World Expo.

Send Mike an e-mail at mike@cisohandbook.com

Research Analysts
Skye Gentile
Skye has twenty years of experience creating and implementing on site-training programs and initiatives for corporate, nonprofit, and academic climates. During her career she has taught at California State University East Bay, Chabot College, Ohlone College, and am currently teaching at Cabrillo College in Santa Cruz California.  Ms. Gentile’s teaching philosophy rests in the belief that individuals learn best in a climate that is active, stimulating, and relevant to the learner. Her academic area of study embodies multiple facets of interpersonal and intercultural communication--actively engaging students with diverse perspectives and diverse teaching styles.  In addition to teaching fulltime, and acting as an advisor for Alpha Gamma Sigma (honor society, Cabrillo Chapter), Ms. Gentile is active in college governance and instructor training--helping colleagues improve their teaching strategies in hopes of better meeting the changing needs of our student population.
 
Jay Houlden
Jay is an information security and privacy professional with over 10 years consulting experience. He is the former lead of the Canadian Accenture Security Practice where he was responsible for providing information security project expertise along with managing resources, business development and recruiting for the Canadian practice.  His broad range of consulting experiences has included security architecture designs, corporate security program implementations, threat risk assessments, vulnerability assessments, regulatory compliance assessments, privacy impact assessments, PKI infrastructure deployments, PCI assessments, Business Continuity Planning (BCP) and Disaster Recovery Planning (DRP). Jay has worked across a broad range of industries which include government, financial services, healthcare, insurance and telecommunications.  He currently runs his own information security and privacy consulting practice in Toronto, Blackbox Technology Consulting Corp.
 
John W. Kelly, CISSP 
John is an information and network security professional with over 11 years of hands on experience within many aspects of the information security and information technology realms. He has strong expertise within the areas of enterprise security architecture and design principles, security operations, project management, threat and vulnerability assessments, PCI assessments, incident response, disaster recovery and business continuity planning, as well as creating information security policies, procedures and guidelines. John has worked in various industries including legislative & regulatory reporting, financial/insurance and consumer/business information services.

Eddie J. Maloney - MCITP, MCTS, OCP
With a BA from George Mason University and over 20 years experience Eddie has spent the better part of his career working in the field of large-volume, high-transaction data processing. His resume includes a number of Fortune 500 companies such as Hearst Corporation and the Resolution Trust Corporation. His experience has enabled him to develop a thorough understanding of the Best-Practices for database security, architecture, development, and administration. Having spent the past eight years as the database architect in the development and implementation of a mass marketing system for the medical field, he developed a solid understanding of regulations and their impact to the storage, transmittal, and processing of data. Mr. Maloney now spends his time as a consultant, writing database security opinions and white papers, and speaking on various database topics.
 
Biljana Cerin - CISA, CISM, CBCP, PMP
Senior Information Security Consultant, S&T Croatia
Biljana graduated in 2000 from the Faculty of Electrical Engineering and Computing in Zagreb, Croatia and continued with the postgraduate master study in information security. She has extensive experience in implementing information security management systems, operational risk assessment and management, business continuity management and information systems auditing. Biljana is also one of the founders and organizers for two annual international security conferences: InfoSeCon and InfoSecWeek. In addition, she is actively involved in promoting information security in Croatia as well as other portions of eastern Europe. She also initiated the adoption of international standards (ISO 27001 and 17799) as Croatian National Standards and constantly promotes the importance of a systematic and controlled approach to managing information security in organizations. Her current professional focus lies in promoting the need to establish the appropriate organizational structures for optimization of risk management and the associated mechanisms for justifying the investment that organizations make for information security.
Premium Sponsor
Delphiis :: Control What You Can
CISOHandbook.com Founder Tweets
Buy Now on Amazon
                        
 

Stay Up To Date
xml.gif 
Gold Sponsors
GRC for Free!
Latus Free Checklist
Ostendo Group
Computer Economics
Information Security Today
Advertise with us?
2012 Coastline Consulting Services, Inc. Privacy Statement  |  Terms Of Use