James Quin

• 
  www.infotech.com/MediaCenter/Analysts/QuinJames.aspx - [Cached Version]
  Published on: 10/4/2008    Last Visited: 10/4/2008  

  James Quin
  
  Info-Tech Research Group: QuinJames
  ...
  James Quin
  ...
  James Quin
  
  Senior Research Analyst
  
  James Quin is a Senior Research Analyst with Info-Tech Research Group.James has held a variety of roles in the field of Information Technology for over 10 years.
  
  Prior to joining Info-Tech, James was employed by a start-up IT security company, Secured Services Inc.He held numerous roles within the organization, often concurrently, including Account Representative, Pre-Sales Systems Engineer, Project Manager, Senior Security Consultant, and Manager of Technical Services.His exposure to all aspects of the organization, as well as his participation in the transition of the company from a dedicated services organization to a dedicated software organization expanded his knowledge of the IT Security field.
  
  James deepened his business development experience at Arqana Technologies, performing dedicated sales, sales support, and consulting activities.This position allowed him to add knowledge of Enterprise Resource Management solutions and to begin to foster his expertise in IT Security.
  
  Early in his career, James served as a technical Project Manager for AT&T Canada. During his time with the company he was involved in the implementation of dozens of enterprise-scale projects, primarily focused on Enterprise Storage and Disaster Recovery.
  
  James attended the University of Toronto and holds a B.A., an Honors B.Sc. and an M.Sc.

• 
  www.infotech.com/MediaCenter/Analysts/DaugavietisEd.asp - [Cached Version]
  Published on: 10/4/2008    Last Visited: 10/4/2008  

  James Quin

• 
  www.postmag.co.uk/public/showPage.html?page=post_breaki - [Cached Version]
  Published on: 8/5/2008    Last Visited: 8/6/2008  

  James Quin, an analyst at Swiss Re said: "There are more than enough 'wrinkles' in the numbers and outlook to enable investors to take a "wait and see" approach.

• 
  cio.co.nz/cio.nsf/news/D16EAF8068C4A1F6CC25746B002E7D0D - [Cached Version]
  Published on: 6/21/2008    Last Visited: 6/24/2008  

  There isn't any shortage of easy to use, inexpensive laptop security tools in the market today, says James Quin, senior research analyst at consultancy firm Info-Tech Research Group, in London, Ont.
  
  Commercial encryption software can be purchased for as low as $50 to $80, he notes.
  ...
  But Quin said this has improved over the years to match many commercial encryption tools.
  
  Another option is Truecrypt - an encryption tool available for free downloading.
  
  "This is a very powerful tool but it is hindered by the lack of central management capability," said Quin.
  
  Companies deploying a large fleet of laptops might skip Truecrypt but the tool would be ideal for individual professionals or small businesses, he said.

• 
  www.itsecurity.com/features/mobile-work-force-threats-0 - [Cached Version]
  Published on: 9/4/2008    Last Visited: 9/27/2008  

  James Quin, an Info-Tech Research Group analyst, weighed in on the pros and cons of the following approaches:
  
  A VPN (Virtual Private Network): According to Quin, a VPN is "a fairly well-established and understood security technology.Organizations have accepted it and have come to view VPNs as having value."Quin said SSL (Secure Sockets Layer) VPNs, in particular, are becoming increasingly popular — a form of VPN that can be used with a standard Web browser and doesn't require installed specialized client software on end users' computers.
  
  NAC (Network Access Control): By restricting the availability of network resources to endpoint devices via NAC, Quin said companies can significantly enhance network security.Access is granted or denied based on predefined security policies that determine where users and devices can go on a network and what they can do.While NAC can be difficult to implement when multiple devices and users are involved, Quin said the trick is modifying and tweaking access controls on an ongoing basis.
  
  Password Protection: While Quin said that "any device should have some form of authentication associated with it," he admitted that "not very many organizations out there are requiring or mandating the use of password protection or authentication for cell phones."Fortunately, most cell phones aren't used to store large amounts of sensitive data.PDAs, on the other hand, often come with built-in password protection — a feature that employees should be encouraged to use.
  
  Corporate-Issued Devices: Employees bringing personal unprotected devices into the workplace and connecting them to a company's corporate network is "a very significant concern" for most security officers, said Quin."Organizations, for their own protection and security, should issue devices themselves so that they can maintain a level of control," he advised.That approach, however, is costly, which presents companies with a catch-22."Encouraging employees to bring their own devices in is more cost-effective but there's a greater security risk," said Quin."At the end of the day, it becomes a personal decision for each organization."
  
  For all the precautions a company may take to prevent mobile device security breaches, Quin said companies need to be realistic."No matter how much money you paid me, I couldn't build you a 100-percent perfectly secure mobile device and network," he admitted.

• 
  www.echannelline.com/usa/story.cfm?item=23404 - [Cached Version]
  Published on: 6/22/2008    Last Visited: 6/24/2008  

  James Quin, senior research analyst with Info-Tech Research Group, said the hybrid approach, in particular the virtualization aspect, has long been overdue.
  
  "The delivery of that virtualization infrastructure is a colossal step forward on taking security and really centralizing it, standardizing it, solidifying it and improving it.I commend them for taking that step," said Quin.
  
  He added that having multiple delivery channels differentiates Secure from other vendor and a hybrid approach is the way the market is going.
  
  "Moving to a variable flexible delivery model is what organizations need to do to survive," Quin noted.

• 
  www.echannelline.com/usa/story.cfm?item=23367 - [Cached Version]
  Published on: 6/11/2008    Last Visited: 6/24/2008  

  James Quin, senior research analyst with Info-Tech Research Group, said that the announcements made at Vision 2008 shows that Symantec is positioning themselves as an enterprise management company and not a security company nor a storage company.
  
  "They are trying to make a statement that a secure environment is a well-managed environment," said Quin.
  
  He added that Symantec is also trying to show the linkage between security and storage.
  
  "It is not about protecting the network anymore but protecting the data and because security is about confidentiality, integrity and availability that bridges over to Veritas," Quin noted.

• 
  www.itsecurity.com/features/im-undersestimated-security - [Cached Version]
  Published on: 5/22/2008    Last Visited: 6/7/2008  

  James Quin, a senior research analyst with Info-Tech Research Group said, "The vast majority of companies really aren't even aware that there's an issue associated with IM malware. ...But when you look at the fact that IM is increasingly being used as a distribution platform for malware , viruses, worms, Trojan horses , and is also a very serious threat in terms of data leakage, organizations simply can't continue to take the track that IM is not something they need to worry about."
  
  Flying Under the Radar
  
  Quin said one of the greatest dangers posed by IM is data leakage.Unlike email which is typically logged, tracked and blocked by an organization, IM communications tend to exit an enterprise outside of the watchful gaze of an IT manager."If I'm sending something through IM on a server that's not maintained by the company and it goes out through a generic traffic port, as far as the firewall is concerned, it's plain old Web traffic," he said.
  ...
  The first step, said Quin, is "determining if IM is something you feel is an appropriate part of your business communication strategy."
  
  2. By preventing IM from being sent over public networks, companies can better manage security challenges."Organizations should look at deploying an internal IM capability rather than using one of the freely available ones outside of the enterprise," said Quin.
  ...
  5. "No technology should ever be deployed without a policy," said Quin.

• 
  newinit.blogspot.com/ - [Cached Version]
  Published on: 5/3/2008    Last Visited: 5/9/2008  

  Info-Tech Research Group's James Quin said the loss of a generic backup data tape is not too concerning -- especially if it's only a slice of information from the server.But the Chrysler case, he said, presents an entirely different story.
  
  "It was a discreet set of data, where there was one data pool that have been backed up onto this tape and sent out," Quin, senior research analyst with the London, Ont.-based research firm, said."The beginning, middle and end of all the data was on this tape, which does make it more accessible.As long as you've got a tape reader, you will be about to get this information."
  
  Even more concerning for Quin though, and what should serve as a warning sign for all enterprises, is the fact that Chrysler has not mentioned the magic 'e' word throughout this entire ordeal.
  
  "At no point has a representative from Chrysler Financial come out and say that this tape was encrypted," he said.
  ...
  As for how companies can protect themselves from similar breaches in the first place -- especially since the data was lost by Chrysler's courier service -- Quin said enterprises will need to take every measure possible to keep data transports in-house.While it might be sufficient for noncritical data to be shipped by third parties, he said, transferring data covered by government regulations -- such as personal data -- should be done by employees if possible.
  
  "The way an organization can ensure the highest level of security is to deliver it themselves and not off-load it to a third-party," he said.

• 
  www.sptnews.ca/index.php?option=com_content&task=view&i - [Cached Version]
  Published on: 6/23/2007    Last Visited: 6/23/2007  

  But before embracing the idea of controlling the flow of traffic through your doors via Internet Explorer, there are some caveats to consider, warns James Quin, a senior research analyst with London, Ont.-based Info-Tech Research.
  ...
  Moving into web-based administration tools is just a cleaner, more efficient way of delivering the front end," says Quin.
  
  There is a potential security risk with relying on tools such as firewalls to ensure safe access control, particularly if the traffic is traveling over standard web protocols such as HTTP, or hypertext transport protocol, he says.
  
  "One of the difficulties with HTTP traffic is the firewall typically just allows or denies and it doesn't dig into the specific traffic pattern contained in that communication stream," explains Quin.

Page:  1 2 3 4 5