Jump Hurdles and Gain Support 10 "must haves" for everyday security by Meryl K. Evans, Editor, The Remediator Security Digest When it comes to PCs, most of us know we must install and run antivirus applications and continuously update software definitions. But is that good enough to keep us safe? Other security measures to take depend on the location of the PC and the user. Is it a work PC? Is it a laptop? Is it a home PC? And if it's a laptop, does it go places or just stay at home safe from the world at large where its only danger could be at the hands of a toddler or pet?

Editorial Corner

The bare minimum for everyday network security While it would be nice to provide a checklist of things an organization should have in place for everyday security (at a minimum), because we all follow different regulations, this can be difficult. Don't despair! This issue's feature article gives you 10 basics that will help protect your organization. Few employees feel comfortable in telling the higher-ups what to do or what they're doing is wrong. Readers offer advice on how to handle a situation with a CSO who doesn't follow written policies and procedures. Do you struggle to communicate with end users because of the geek speak that gets in the way? One reader does and would appreciate advice from those who have overcome the language divide. Thank you for taking the time to read the newsletter, and we hope its content helps your professional life. You can check out past issues in the newsletter archives. Please continue sharing your thoughts, questions you have for readers and article suggestions in the speedy reader survey. We review every submission. As a thank you, we put your name into a drawing for a chance to win a TomTom GO 910 Portable Navigation System. Best, Meryl K. Evans Editor, The Remediator Security Digest To unsubscribe instantly or change your preferences, see links at the bottom

Aberdeen Group Report: Sustaining Compliance Author: Derek E. Brink, Vice President and Research Director, IT Security

Shavlik Security Intelligence Shavlik Security Intelligence is an intuitive IT risk and compliance intelligence solution that provides IT executives with a powerful solution for quickly assessing risk levels and policy non-compliance across the network. IT decision-makers at any level can create their own views into areas of risk or non-compliance related to security configuration settings, system patch levels, spyware, malware and unapproved software — via a single Web-based dashboard.  for more information.

Last Issue's Security Dilemma: What if the top dog ignores written security polices? The top-level administrator in our organization is the worst offender of ignoring written policies and best practices. He is defensive when I ask him to comply. I imagine this is an issue for many IT departments. Should I talk to the CSO, who controls the security policy, keep reminding him of our policies or take other steps to ensure he complies? — Policy Keeper Read the best advice.   This Issue's Security Dilemma: When geek speak sounds like gibberish How do you manage the geek-speak vs. user-speak (or customer-speak) divide? It's my biggest challenge on a daily basis. I struggle to come up with winning translations to shorten the time I spend explaining technical details and processes to our non-technical users. The calls would take less time if I could bridge the language barrier between customer and me. How do readers deal with the ungeek? Or is it a lost cause? — Geek Translator Can You Help? Share your experience. You could win a 256 MB MP3 Player. Congratulations to this quarter's winner: Fred Kerber, director of information technology — Accupay Payroll, Inc.

Know how to get what you need:

Take charge of your career:

For a well-deserved breather: