Threats and Vulnerabilities

• CERT Coordination Center
• US Computer Emergency Readiness Team
• Secunia
• Common Vulnerabilities and Exposures
• Open Web Application Security Project
• SANS Top 20
• McAfee Threat Center
• Symantec Security Response

Security News

• Information Security Magazine
• CSO Magazine
• Secure Computing Magazine
• IEEE Security & Privacy
• Security Park
• Tao Security Blog
• Network Information Security and Technology News

Privacy News, Regulations, and Issues

• International Assocation of Privacy Professionals
• Electronic Frontier Foundation
• Center for Democracy and Technology
• Electronic Privacy Information Center
• HHS Office of Civil Rights (HIPAA)
• Federal Trade Commission Privacy Initiatives

Frameworks

• ISO 27000 Series (to purchase)
• ISO 27000 Series
• ISO 27002 in plain English
• Sherwood Applied Business Security Architecture (SABSA)

Training and Certifications

• SANS Institute
• (ISC)²
• ISACA
• EC-Council
• Intense School
• MIS Training Institute
• Security University
• Infosec Institute

Government Resources

• NIST Special Publication 800 Series
• NIST Federal Information Processing Standards
• NIST FISMA Project
• OMB Information Policy, E-Gov and IT
• Federal Enterprise Architecture
• FISMA Scorecards