Opinion

The CSO Book of Lists

Lists on network security, fraud, loss prevention, leadership, curious acronyms, shark attacks, bizarre thefts, and so much more.

By Derek Slater

December 01, 2006CSO

I am not a listaholic exactly, but there's no question that a nice checklist can save the day. I can't

go to the grocery store without a shopping list, for example, or else we wind up having dinners like

Roast Chicken with No Side Dishes, or Pasta with Nearly Marinara Sauce.

The Book of Lists—not the issue you're reading, but the one that's actually a book—was

published in 1977 by Irving Wallace and his kids, David Wallechinsky and Amy Wallace. The kids have

periodically updated it with new editions and somewhere along the way, it picked up the subtitle The

Original Compendium of Useless Information, presumably because other people saw the book's success

and ripped off the format for books—or magazines—of their own.

They're not kidding with that subtitle. Plenty of the material in the original book is genuinely useless. It

includes such lists as:

  • Shoe sizes of famous people

  • The 15 most boring classics

  • People misquoted by Ronald Reagan

While we've borrowed their format (though I prefer to call this issue "an homage"), we've tried to keep

our own Book of Lists light on the useless stuff—even though useless lists are often the most

fascinating to read. What we hope you'll find here instead is eminently useful information on a broad

range of security topics, including:

  • Metrics (good and bad)

  • Emerging technologies and vulnerabilities

  • Fraud

  • Global threats

  • Data breach litigation

  • Business continuity exercises

  • Starting a new job

(We did try to sprinkle in just enough useless-but-fascinating stuff to make good vacation reading too.)

My favorite list in this issue is "How to Build a Surveillance Camera System" (Page 36). It's ridiculously

useful, and also it's what we call found material. We didn't plan on it; we didn't ask for it. Senior Editor

Scott Berinato, who spearheaded the entire issue and whom I would describe as a listaholic, e-mailed a

bunch of questions to a bunch of CSOs. Instead of answering our questions, one gent sent us this

detailed camera plan—plus even more information we couldn't fit into the

magazine—"because it's top of mind."

What's your favorite list in this issue? And what did we miss that's top of mind for you? Maybe we

should do a second edition next year. Let us know.

Derek Slater

Other stories by Derek Slater

RESOURCE CENTER
Loading...
VIRTUAL CONFERENCE
Data Center Directions Virtual Conference

Data Center VCAttend this free, 100% online event exploring tools and techniques for making your data center deliver for today and tomorrow.

» Learn more and register here

WHITE PAPER
Maximizing Site Visitor Trust Using Extended Validation SSL

VeriSignNow with Extended Validation (EV) SSL available from VeriSign, you can show your customers that they can trust your site. Learn about EV SSL benefits in the free VeriSign white paper.

» Read the Paper

Featured Sponsors
Sponsored Links

E-LOAN Maintains Reputation as a Privacy Leader with Symantec

Data Loss Prevention: Keeping Sensitive Data Out of the Wrong Hands

Prudential Financial Protects its Brand with Symantec

Efficient - Flexible - Compliant

Envision Identity-Based Access Control for the Datacenter

Using Likewise to Comply with PCI Data Security Standard

When Customer Relationship is Everything, Businesses Bank on SSL Solutions

The Case for Business Software Assurance ~ Securing Your Applications

Maximizing Site Visitor Trust Using Extended Validation SSL

Solving Online Credit Fraud Using Device Reputation

Understanding Data Location is Imperative for Data Loss Prevention

Secure your virtual and physical environments with the same software

Manage your IT more effectively

IDC Defines an Identity and Access Management Submarket

IDC Defines an Identity and Access Management Submarket for Managing Privileged User Accounts and Meeting GRC Requirements

Everything Today's CISO Needs to Know About Using SSO to Succeed in the Web 2.0 Era

7 Requirements of Data Loss Prevention

Information Security: Data Drains and How to Prevent Loss

CA's IT Security centralizes your identity management to turn security into a proactive, business-building tool

How Are Open Source Development Communities Embracing Security Best Practices?

Digital Identity Protection and Data Security Get Personal

Simplify your data center with Juniper Networks. View the webcast

Managing SSL Security in Multi-Server Environments

The Latest Advancements in SSL Technology

How to Offer the Strongest SSL Encryption

Forrester Total Economic Impact (TEI) report: Save Millions in Fraud Losses.

Get in Compliance With Government Data Regulations

Taking the Botnet Threat Seriously

Any company can promise identity protection. Only Debix can prove it

Welcome to the age of Service-Oriented Security (SOS)

Enabling Compliance with Converged Mainframe Security and Storage

5 Steps to Secure Outsourced Application Development