Information Security

Thoughts & Experiences from Todd Kutzke

Reducing Operational Risk through Business Continuity Management

Hi all, I’m Tom Easthope, Sr. Program Manager on the Enterprise Business Continuity team at...

Date: 01/20/2010

InfoSec A&P Suite – How to Use the Tools

InfoSec recently released their Assessment & Protection (A&P) Suite. To get the details of...

Date: 11/30/2009

InfoSec Assessment & Protection (A&P) Suite Released

The Information Security Tools (IST) team has released the InfoSec Assessment & Protection...

Date: 11/16/2009

Dogfooding: How Microsoft IT Information Security Dogfoods

Hi Mark Smith here. I’m a senior program manager on the Microsoft Information Security. I’m kicking...

Date: 10/08/2009

How to Integrate Risk Tracker with Internal HR Feeds

I’ve been discussing the Risk Tracker v1.0 application built on the CISF (Connected Information...

Date: 09/30/2009

Risk Tracker v1.0 Release

Recently I shared with you the release of the CISF (Connected Information Security Framework) and...

Date: 09/29/2009

Anti-XSS Library v3.1 Released!

The Microsoft Information Security Tools (IST) team has released the latest Microsoft Anti-Cross...

Date: 09/17/2009

Announcing the Connected Information Security Framework (CISF) and Risk Tracker

I’m excited to announce the release of the Connected Information Security Framework (CISF) developed...

Date: 09/15/2009

Awareness – Part 3: Learning & Optimizing from Experience

In my last 2 posts on Information Security Awareness, I provided a little overview of the program...

Date: 08/13/2009

Awareness – Part 2: Socializing Security

In my last post on Awareness, I discussed an overview of our Awareness program and how we break up...

Date: 07/30/2009

Awareness – Part 1: Empowering the People

It’s well understood that security is a 3-pronged problem covering people, process and technology....

Date: 07/21/2009

Risk Analysis

Risk analysis is an intimidating topic for security risk management organizations. Analysis takes...

Date: 07/02/2009

Beautiful Security

Mark Curphey, who also leads our Information Security Tools team, contributed a chapter in a...

Date: 06/30/2009

From Hyderabad: Over The Weekend

Over the weekend, I had an opportunity to visit a few orphanages around Hyderabad. It’s an...

Date: 06/24/2009

From Hyderabad: Teamwork

I had a chance to play Cricket with the InfoSec India team this week. It was a great blast and it...

Date: 06/20/2009

From Hyderabad: Local Leadership

I arrived in Hyderabad earlier this week and am underway meeting with the team members here. As I...

Date: 06/17/2009

Information Security in India

Next week I’m going to be in India to visit our team in Hyderabad. Outside of Redmond, USA,...

Date: 06/11/2009

Announcing SDL-LOB

I’m very excited to announce the recently released SDL-LOB. You can read more here and be sure to...

Date: 06/10/2009

Rethinking Information Security: Align vs. Govern

There is little doubt that information is fast becoming ubiquitous. In its digital form, you can...

Date: 06/03/2009

Data Collection & Fact Gathering

Information security risk management serves organizations best when it is proactive versus reactive....

Date: 05/22/2009

Process of Managing Risk

Information Security’s core function includes managing information security risk. Now there is a lot...

Date: 04/21/2009

Information Security & Performance

Our mission in Information Security is to enable secure & reliable business. In going about our...

Date: 03/17/2009

Welcome...

Welcome… My name is Todd Kutzke and I help lead the Information Security group within Microsoft....

Date: 03/03/2009