Gary Bahadur http://garybahadur.com Social Media Security Expert Sun, 13 Jan 2013 22:40:12 +0000 en-US hourly 1 http://wordpress.org/?v=3.5 Information Security Speaker http://garybahadur.com/information-security-speaker/ http://garybahadur.com/information-security-speaker/#comments Fri, 11 Jan 2013 20:15:00 +0000 admin http://garybahadur.com/?p=88 Gary Bahadur

Social Media Security and Risk Expert

New Technology has introduced us to countless new forms of communication and systems that have changed the way we do business. In turn, the security risk for companies has never been greater, a crucial point that countless businesses have neglected to acknowledge.

Information security expert, Gary Bahadur, understands the protection strategies and precautions that need to be taken in order for your information to be secure. It is Gary’s mission to provide people with the practical knowledge and information needed for their business to remain protected through speaking, books, educational seminars and training and incisive blog articles.

Gary’s innovative and easy to apply security strategies can help any organization change how they handle their risk management.

Gary reveals to you step-by-step strategies for finding and reducing risk through his unique style of illustrations with real world experiences.

As a professional consultant and speaker he has delivered presentations for organizations such as MIS, CIO Council of Florida, Conrad Foundation Spirit of Innovation Awards, HackerHalted Conference, Institute of Internal Auditors, Singapore, CERT Conference, Florida Bankers Association, Army Reserve Information Assurance, Networld+Interop, ISACA, Vanguard Security Conference and ISSA. ]]> http://garybahadur.com/information-security-speaker/feed/ 0 Speaker and Author http://garybahadur.com/speaker-and-author/ http://garybahadur.com/speaker-and-author/#comments Tue, 01 Jan 2013 19:54:18 +0000 ITAdmin2 http://garybahadur.com/?p=2428 Book Gary Bahadur and make your next event eye opening! Through his exciting and educational presentations, Gary draws on his extensive experience in working with companies in Finance, High Tech, Legal and Manufacturing to spark conversations around risks that most people never consider in their day to day business. He shares his vision and strategy for achieving business goals with less risk and more efficiency in security management.

Gary is available for speaking engagements for industry associations, public seminars, corporations, events and industry specific training.

Educate and Motivate

Gary Bahadur’s new book “Securing the Clicks: Network Security in the Age of Social Media” is all about protecting your organization from devastating social media attacks. This book explains the latest threats along with detailed fixes, best practices, and “from the headlines” case studies. Find out how to analyze risk, implement robust security protocols, and enforce social media usage policies.

Gary walks through the dangers companies face in the Social Mead world and how to better themselves in this talk.

Gary reveals to you step-by-step strategies for finding and reducing risk through his unique style of illustrations with real world experiences. As a professional consultant and speaker he has delivered presentations for organizations such as MIS, CIO Council of Florida, Conrad Foundation Spirit of Innovation Awards, HackerHalted Conference, Institute of Internal Auditors, Singapore, CERT Conference, Florida Bankers Association, Army Reserve Information Assurance, Networld+Interop, ISACA, Vanguard Security Conference and ISSA.

Listen as Gary speaks on Cyberhood Watch Radio – Risk Assessment, Vulnerabilities and Website Security.

Gary’s strategies saw him invited to speak at major events all over The USA, Singapore, Australia, England, and South America.

Gary has successfully published three books entitled “Securing the Clicks:Network Security in the Age of Social Media” McGraw-Hill, “Privacy Defended: Protecting Yourself Online”, Que Publishing, “Windows XP Professional Security”, Osborne McGraw-Hill.

“Gary Bahadur, CEO of KRAA Security, presented at DAMA South Florida at Nova Southeastern University. Mr. Bahadur was a very impressive keynote speaker who held rapt attention while deftly fielded the most challenging questions on information security scenarios to an audience of upper management from South Florida Corporations.

Francine Adams, CBIP, CDMP, MSC

Vice President, Data Management Association”

The South Florida CIO Council recently had the pleasure of having Gary Bahadur speak to a group of CIOs on the topic of Social Media Security. Gary was able to take a complex subject and break it into digestible sections that elicited a large number of questions and group interaction, among a normally quiet and reserved group. This included presentation of diverse points of view, the risks, liabilities and pros and cons. We would have Gary speak to us again, at any time.

Kevin C Brady

Vice President, South Florida CIO Council

Gary is both a subject matter expert in the field of IT security and an entertaining presenter, a difficult combination to find. He enlightened to us on the new ways that data can be taken without authorization and what we can start doing about it. The knowledge you shared with us on IT security concerns, especially related to social media was both interesting and very current. Great content !!! Thanks Gary.

Fernando Cancino

Association of Certified Fraud Examiners, South Florida President

Gary brings enormous energy insight into topics that affect everyone and every company. His presentations span over a decade and he continues to develop innovative talks into new security and risk topics. Book Gary Today To discover how Gary can make an exciting impact at your next conference or training contact us today ]]> http://garybahadur.com/speaker-and-author/feed/ 0 Author http://garybahadur.com/author/ http://garybahadur.com/author/#comments Fri, 13 Jan 2012 22:38:58 +0000 ITAdmin2 http://garybahadur.com/?p=2512

Social Media Security Expert
Social Media Security Expert Gary Author and Speaker
]]> http://garybahadur.com/author/feed/ 0 Convergence of Mobile and Social with Google acquisition of Motorola Mobility http://garybahadur.com/convergence-of-mobile-and-social-with-google-acquisition-of-motorola-mobility/ http://garybahadur.com/convergence-of-mobile-and-social-with-google-acquisition-of-motorola-mobility/#comments Mon, 22 Aug 2011 16:44:54 +0000 admin http://garybahadur.com/?p=99 Convergence of Mobile and Social with Google acquisition of Motorola Mobility
On Monday Google came out with another acquisition, but not in the social media sphere this time. Google is acquiring the smartphone maker Motorola Mobility for $12.5 billion in cash. That’s a 64% premium over the stock price. That’s a lot of valuable minutes! See the article here http://www.huffingtonpost.com/2011/08/15/google-motorola-mobility_n_926923.html  A key part of their press release was “The acquisition of Motorola Mobility, a dedicated Android partner, will enable Google to supercharge the Android ecosystem and will enhance competition in mobile computing. Motorola Mobility will remain a licensee of Android and Android will remain open. Google will run Motorola Mobility as a separate business.” This greatly expands the patent portfolio of Google as well, Motorola Mobility holds approximately 14,600 granted patents and 6,700 pending patent applications.
The next step in the evolution of the social web really is on the mobile device. It seems as if every company that has a web application and website is now porting everything to the mobile device. With the apps for iOS, Android and WebOS, they availability is use apps covers just about everyone. With this purchase of Motorola Mobility, Google is setting up more vertical integration of the app development process. As they say, they will keep the Andriod platform open, and we should be able to count on that from Google. As Andy Rubin, Senior Vice President of Mobile at Google, said, “We expect that this combination will enable us to break new ground for the Android ecosystem. However, our vision for Android is unchanged and Google remains firmly committed to Android as an open platform and a vibrant open source community. We will continue to work with all of our valued Android partners to develop and distribute innovative Android-powered devices.” As companies move into the mobile space, there a number of threats that they will probably never have seen before. Are they prepared for a different threat landscape that is not the traditional things like virus’, malware and worms? Make no mistake, these traditional threats are occurring in mobile, but the new ones will be just as great. A key part of the new risk model for mobile is the data being ported between the social web applications and your phone. The Motorola Mobility platform if going to more integrated with Google we can expect, but this may just open your data to hackers through a different platform that does not have a 20 year history of address security threats. Some of the key threats to mobile we can expect include:
  1. Social network data theft, leveraging your mobile applications to steal data through poor coding techniques
  2. Trojans applications, pretending to be legitimate applications that can steal data
  3. Man in the middle attacks, using the mobile application to launch further attacks and stay disguised
  4. In-app theft, using installed apps to break into your connected bank accounts or PayPal accounts
We do not know what the future holds for the Motorola Mobility purchase by Google, but I think we can safely assume the Google stock price will rise! Gary Bahadur CEO KRAA Security www.kraasecurity.com
]]> http://garybahadur.com/convergence-of-mobile-and-social-with-google-acquisition-of-motorola-mobility/feed/ 0 Speaker http://garybahadur.com/speaker/ http://garybahadur.com/speaker/#comments Tue, 15 Feb 2011 15:12:16 +0000 ITAdmin2 http://garybahadur.com/?p=2248
Social Media Security Expert
Social Media Security Expert Gary Bahadur Author and Speaker
]]> http://garybahadur.com/speaker/feed/ 0 The Dangers of Employee Social Media Usage http://garybahadur.com/the-dangers-of-employee-social-media-usage/ http://garybahadur.com/the-dangers-of-employee-social-media-usage/#comments Mon, 24 Jan 2011 23:08:06 +0000 admin http://garybahadur.com/?p=56 Employers are hearing constantly of social media this and social media that. When your employees go on break or eat lunch, they are always on their cell phones talking. But, now there are also applications on phones like Facebook, Twitter, FourSquare and others where an employee can actually send photo uploads while being mobile and even post to Facebook automatically. Are employees using social media securely? Does your company have anything in place for protecting confidentiality through social media usage? Do you have a Social Media Security Policy? Employees sign agreements when joining the company but did the business cover disclosing things like pictures or private conversations and even meeting information via Google Buzz or Facebook? What about brand new products being developed that are trade secrets? If your employees are online working to do their job and Facebook, MySpace, or gaming sites like Pogo are not blocked, how do you know they are doing their work 100% of the time? Just because their production numbers look great, doesn’t mean they are not slacking. Have you done a Social Media Security Assessment? It is becoming an epidemic in the work force with employees breaking rules and ultimately being fired every day. If security monitoring technologies are in place you could possibly sue the former employee but your trade secrets are gone and so might be your reputation. If an employee is bad-mouthing your company and tells everyone to not buy or shop with you, there goes your business immediately. You can make a legal policy for employees to sign when they start their job that they will not talk, disclose, or say anything bad about the company on social media sites. If businesses do not step up soon and do something it can be a total free for all! Here are a few interesting facts to consider. One out of every ten employees admitted overriding their job’s security system so they could access restricted sites. In 2009, 24% of eight hundred employers surveyed said they had to discipline an employee for using social media sites. Another study showed 8% of employees were terminated for accessing Facebook out of two hundred businesses polled. Twenty eight thousand people were polled in the United Kingdom at the beginning of 2010 and a whopping 87% said they can do what they want; it is their right to do so. It is now believed that social networking will replace email by 2014 as the main way to communicate for 20% of all business owners or users. Is your company prepared for Secure Social Media?]]> http://garybahadur.com/the-dangers-of-employee-social-media-usage/feed/ 0 Tips to Avoid Confidentiality Issues When Using Social Networking Media http://garybahadur.com/tips-to-avoid-confidentiality-issues-when-using-social-networking-media/ http://garybahadur.com/tips-to-avoid-confidentiality-issues-when-using-social-networking-media/#comments Mon, 13 Dec 2010 00:30:30 +0000 admin http://garybahadur.com/?p=51 HIPAA Security Rule compliance. Social media applications are not just a part of one’s personal lifestyle; this has also become incorporated in the corporate climate. Many places use these applications for marketing, file sharing, communication, and employee recruitment. While these applications can open up a great many doors of communication, some type of guidance or governance is necessary. Because banning the use of such sites is most likely unenforceable or impractical, a hospital or other such entity that must shield private information should at least ask or force their employees to adhere to some Social Media Policy guidelines. For instance, when utilizing social networking sites, one should use separate passwords for the different sites, as an individual can easily hack all of one’s accounts if they know the one password. A security breach of one account could snowball. Passwords should be complex and change every 90 days. Accessing social media sites should be over SSL and only from trusted network connections, not coffee shops especially for business purposes! In the case of company documents or patient information, if it isn’t found on the company’s web page it probably should not be posted elsewhere. There are sites that exude a feeling of privacy and security, but are far from it. Allowing one’s corporate information security team to determine what sites are acceptable is the best option. Another thing one should not do is post his or her own identifying information publicly, such as date of birth, his or her social security number, or an employee ID number. If a site requires this information, 1) it is most likely not a reputable site, and/or 2) one could make something up or ensure that it is not going to be displayed in a profile that will be public. Some information may not be considered confidential; yet not posting these items to public social media sites is probably a good idea. This can include anything from rumors, to purchases the company plans on making, anything about the technology one’s company uses or will use, and any projects the individual may be working on. So in one’s personal endeavors, it is most beneficial to all involved if confidential information, or information that could be considered secret, stays out of the hands of the public. Follow practical posting guidelines and do not share more information than is necessary in corporate social media activities. Gary Bahadur CEO KRAA Security, baha@kraasecurity.com http://www.kraasecurity.com http://blog.kraasecurity.com http://twitter.com/kraasecurity *Managed Security Services *Vulnerability Management *Compliance & Police Development *PGP Security *Free Website Security Test
Enhanced by Zemanta
]]> http://garybahadur.com/tips-to-avoid-confidentiality-issues-when-using-social-networking-media/feed/ 0 Build a Corporate Social Media Policy http://garybahadur.com/20/ http://garybahadur.com/20/#comments Thu, 12 Aug 2010 03:25:51 +0000 admin http://garybahadur.com/?p=20  Social Media Policy Social Media has become part of the user community several years ago. Today we have social media in the corporate environment. The main problem we have is how social media has evolved. It has been a bottom up approach. By bottom up I mean that the consumer has determined how to use a technology and the corporation is playing catch up. But the social norms that are appropriate for a consumer “product” are not appropriate in a corporate environment. Social media usage is being retrofitted into the corporate environment. But the consumer is already used to using social media in an insecure, “information must be free” manner. Employees who have been used to giving up all their information in places such as Facebook and Twitter must now be retrained to use social media in a whole different manner to meet corporate standards. (Assuming we have a corporate standard for social media security) But what is a corporate standard for using social media in an appropriate fashion that does not put the company at risk? Corporations have not made a concerted effort to define that secure social media strategy, or even a strategy for training their employees in the “correct” use of social media. What is a good starting point for implementing a social media policy? Here is a basic guideline. 1) Define a policy – You cannot assume employees will do the right thing without guidance. You already have things like Expense Policies, Acceptable Use Policies, Internet Use Policies. Write a basic guideline. What’s in that guideline will vary from company to company. 2) Information Classification – You have to explicitly define what information can be shared and what information should not be Tweeted, FaceBooked, BlibbedBlabbaded (I made that up)about. If your employees do not know how valuable information is that you cannot blame them for inadvertently being sucked into the blogosphere. (I am not sure blogosphere is yet a word, but who cares) 3) Keep It professional – If you allow your employees to Socialize (that a word with any meaning here?) information about your company, you have to give them standards to follow. Things like cursing, grammar mistakes, casual conversation style discussions might not be the image you want to portray when discussing anything related to your company. 4) Tracking and Monitoring – If you are going to have a policy for anything, you have to have a mechanism for tracking compliance, reporting on activity and have consequences for breaking that policy. How much tweets that are over the line makes you bring an employee before HR? What is a firing Facebook picture offense? This is a very abbreviated start. In later posts I will define more aspects of a social media policy. But let’s get the conversation started about the necessity for this as a standard policy in every organization, both large and small.  Gary Bahadur www.kraasecurity.com info@kraasecurity.com
Related articles by Zemanta
Enhanced by Zemanta
]]> http://garybahadur.com/20/feed/ 0