Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Analytics

9/23/2013
02:02 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

BT Launches Virtual Chief Security Officer Service In The U.S. For End-To-End Enterprise Security

vCSO is a managed service that provides development, management, and operation of an enterprise information security team

IRVING, Texas, Sept. 23, 2013 /PRNewswire/ -- BT today announced the launch of virtual Chief Security Officer (vCSO), a new managed service that provides the full development, management and operation of an enterprise information security team. vCSO is designed to help security executives address the growing challenge of managing a world-class security function.

Information security is no longer a supporting role within IT organizations.

Security threats and risks are at an all-time high, with more cyberattacks each day and the growth of mobility, social media, cloud computing and big data in enterprises adding additional complexity to the enterprise.

With vCSO from BT Advise Assure, an organization can take advantage of a full service that covers all the duties of a Chief Security Officer (CSO) at a much lower cost, enabling them to better balance security demands with strategic business needs.

"With the pace of change in business and technology advances today, it's never been harder to protect your business. However, for most businesses, IT resources are already constrained and there may be no budget to hire a dedicated security professional," said Bas Burger, president of US & Canada at BT Global Services.

"While many companies are looking at how to build this role into their future organizations, BT has already been thinking about how to solve this problem.

With our vCSO service, companies can get the expert, board-level resources they need to drive security, compliance and governance programs without a costly staffing investment."

The vCSO service is a flexible delivery model that can be tailored to fit the unique needs of each company. The service is available on both a project basis for specific security initiatives, including emergency scenarios, as well as an on-going retainer for more long-term support. At the start of each vCSO engagement, BT will conduct a full review of the company's security systems to identify the current infrastructure and areas for improvement. Specific areas where a vCSO can help include:

-- Development, implementation and updates of global security policies, standards, guidelines and procedures.

-- Reviewing current IT risk assessment processes and conducting Rapid Risk Assessments (RRA) to determine vulnerabilities in the business.

-- Designing an information security program roadmap to support specific business requirements.

-- Managing and directing the team of security professionals and vendors that maintain the IT infrastructure, including network connectivity, Internet presence, applications and servers, clients, networked devices, wireless, telephony, e-business, IDS, anti-virus, authentication, authorization and firewalls.

-- Leading internal management teams across different business functions, internal security councils and governance forums.

-- Acting as a consultant and liaison to other IT groups on security matters.

The vCSO service makes it possible for companies to put BT's 25 years of experience managing information security programs to work for their business.

vCSO brings world-class security expertise and industry professionals from BT Advise Assure into an company's organization, making sure its IT investments are in line with its business goals, regulatory challenges and overall business strategies.

For more information, please visit:

http://www.globalservices.bt.com/us/en/products/assure_cyber_quick_start .

About BT

BT is one of the world's leading providers of communications services and solutions, serving customers in more than 170 countries. Its principal activities include the provision of networked IT services globally; local, national and international telecommunications services to its customers for use at home, at work and on the move; broadband and internet products and services and converged fixed/mobile products and services. BT consists principally of four lines of business: BT Global Services, BT Retail, BT Wholesale and Openreach.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Manchester United Suffers Cyberattack
Dark Reading Staff 11/23/2020
As 'Anywhere Work' Evolves, Security Will Be Key Challenge
Robert Lemos, Contributing Writer,  11/23/2020
Cloud Security Startup Lightspin Emerges From Stealth
Kelly Sheridan, Staff Editor, Dark Reading,  11/24/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-27218
PUBLISHED: 2020-11-28
In Eclipse Jetty version 9.4.0.RC0 to 9.4.34.v20201102, 10.0.0.alpha0 to 10.0.0.beta2, and 11.0.0.alpha0 to 11.0.0.beta2, if GZIP request body inflation is enabled and requests from different clients are multiplexed onto a single connection, and if an attacker can send a request with a body that is ...
CVE-2020-29367
PUBLISHED: 2020-11-27
blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data.
CVE-2020-26245
PUBLISHED: 2020-11-27
npm package systeminformation before version 4.30.5 is vulnerable to Prototype Pollution leading to Command Injection. The issue was fixed with a rewrite of shell sanitations to avoid prototyper pollution problems. The issue is fixed in version 4.30.5. If you cannot upgrade, be sure to check or sani...
CVE-2017-15682
PUBLISHED: 2020-11-27
In Crafter CMS Crafter Studio 3.0.1 an unauthenticated attacker is able to inject malicious JavaScript code resulting in a stored/blind XSS in the admin panel.
CVE-2017-15683
PUBLISHED: 2020-11-27
In Crafter CMS Crafter Studio 3.0.1 an unauthenticated attacker is able to create a site with specially crafted XML that allows the retrieval of OS files out-of-band.