Simple Rules To Stop Bad Guys

Hi, RockyH here, I was browsing for IT security news from the hotel this evening and came across this gem:   That’s it. Of course there is no information about who to email, and why should their be. If they can’t figure out how to tell the difference between malicious traffic and real traffic other…

9

InfoSec A&P Suite: How to Install & Configure

Hi everyone, Diane here.  Recently the Information Security Tools (IST) Team released the Assessment & Protection (A&P) Suite. If you missed the overview on the A&P suite, check out the Information Security blog.  The Web Protection Library v1.0 (WPL) Security Runtime Engine (SRE) has been significantly updated.  Anil Revuru (RV) from the IST team discusses…

0

Introducing the InfoSec Assessment & Protection Suite

The Information Security Tools (IST) team has released the InfoSec Assessment & Protection (A&P) Suite.  It’s a suite made up of protection and assessment tools which include: Web Protection Library (WPL) – an umbrella for several libraries and runtime modules including the Microsoft Anti-Cross Site Scripting Library v3.1 (Anti-XSS V3.1) and SRE, packaged together with…

0

Dogfooding: How Microsoft IT Information Security Dogfoods: Product Influence

Hi Steven Michalove here, I’m a principal program manager on Microsoft IT’s Information Security (InfoSec) group. For the last of couple weeks, we’ve been talking about Microsoft IT’s (MSIT) dogfooding process, known as the First & Best program. Concluding this dogfooding blog series, I would like to share with you how we help influence the…

0

Dogfooding: How Microsoft IT Information Security Dogfoods, Phase 2: Perform an Assessment of the Features Only

Hi Price Oden here, I’m a principal senior security architect on the Microsoft IT Information Security (InfoSec) group. Dogfooding is part of Microsoft IT’s culture.  It’s where Microsoft IT (MSIT) plays an important role and service for Microsoft’s enterprise customers.  Despite the challenges of mixing testing and production on the same network and environment, MSIT…

0

Dogfooding: How Microsoft IT Information Security Dogfoods, Phase 1: Conduct a Security Design Review

Hi Don Nguyen here, I’m a senior security engineer with the Microsoft Information Security’s (InfoSec), ACE Team. Continuing with our blog series on dogfooding, today I will be talking about phase 1: conduct a security design review, of our formal dogfooding process called, the First & Best program. In case you missed it, read Mark…

0

Risk Management in Risk Tracker

Hey there, my name is Sarah Pickard and I am a Senior Program Manager on the Microsoft Information Security Risk Management team.  You have seen some blogs by Vineet Batta on the external release of Risk Tracker which is an application Information Security uses to – – well, track risk.   To find out more information…

0

Dogfooding: How Microsoft IT’s Information Security Dogfoods

Hello Diane here.  Do you ever wonder how Microsoft’s IT Information Security (InfoSec) is involved in the dogfooding process?  This week we’re kicking off our blog series on dogfooding.  It’s a formal program in Microsoft IT known as the First & Best prgram.  Recently Mark Smith, senior program manager on Microsoft’s InfoSec group, in his blog provides…

0

How to Integrate Risk Tracker with Internal HR Feeds

Organizations who would like to deploy the Risk Tracker v1.0 application in their own environment, Vineet Batta, senior software developer on Microsoft’s IST team, shares how in his blog, “How to Integrate Risk Tracker with Internal HR Feeds.”  Additionally, to get an an overview of this application and the key features, also read Vineet’s blog, “Risk…

0

Risk Tracker v1.0 Release

The Microsoft Information Security Tools (IST) team releases Risk Tracker version 1.0 application.  Risk Tracker built on CISF (Connected Information Security Framework) framework will help organizations manage, track and report on risks.  Vineet Batta, Senior Software Developer from Microsoft’s IST team, in his recent blog, “Risk Tracker v1.0 Release” provides an overview of the features supported…

0