Working on Version 1.2

Got plenty of feedback (perhaps more than i can process). People trying and using eramba seem mostly to be consultants, security managers (some curious auditors too). I want to thank you all for the ideas and motivation that keeps us moving forward! This is what you can expect from eramba version 1.2 (release will be in…

Read More

Presenting eramba @ India’s c0c0n conference

thrill! we have been invited to participate at India’s c0c0n conference (line up is being built) in September the 26th-28th … ! it’s an inmense pleasure which of course we have accepted immediately (before they change their minds!) i hope eramba version 1.2 will be ready by then (another post with this as soon as we…

Read More

eramba at ISACA Hungary Annual Conference

The team in ISACA Hungary contacted me and offer a few minutes of glory at their annual ISACA Conference. Gladly accepting the invitation i toke of to Budapest and showed a short slide-deck on about our humble project. The conference was REALLY well organised  preparatives a few before included many people, dinners, hotels .. all very good. There…

Read More

Version 1.1 & New Website is Out!

Since the initial release of eramba (February 2013) we have been receiving quite an interesting feedback from many different countries. I’ll try to summary them: As you can see, we have included much of what was requested on this new release. We have also included: We are happy with the 1.1 release. As you can…

Read More

Security Controls Catalogue – Isn’t time to learn from ITIL?

I believe a great concept was introduced by ITIL with the definition of “Portfolios” or “Catalogues”. The idea is quite simple and of great use: define your services, spend some time thinking what they cost, what they, for whom, how you measure their efficacy and if you are brave enough: their efficiency. Having this information…

Read More

Data Flow Analysis – To the point Risk Analysis?

Data flow analysis are perhaps a new(?) method for analysing right to the point the most important data assets. Just so we are all in the same page, we refer here as “Data assets” as end-assets… like Napoleon used to say, one example clarifies everything: Financial Data, Credit Card Number, Medical Files, Personal Information, Source…

Read More