Archive for the ‘risk assessment’ Category

Citibank Data Security Breach

Posted: 24th June 2011 by admin in Hacking News, PCI, risk assessment, Security Assesment, Security Policy, Web Security
Tags:
0

Citibank Data Security Breach, credit cards stolen

Social Media Warfare: Are you attacking or defending?

Posted: 6th September 2010 by admin in antivirus, Compliance, Entrepreneur, Phishing, risk assessment, Security Assesment, Security Policy, social media, Social network, Web 2.0, Web Security
Tags: , , , , , , ,
0

Image via CrunchBase Is there such a thing as Social Media Warfare? We have had cyber warfare going on for years now. So it should be an obvious “YES” that Social Media warfare exists. But is that true?  To get to a full blown war opposing sides go through an escalation process. Where are we [...]

Building a Social Media Policy

Posted: 11th August 2010 by admin in Compliance, Could Computing, Entrepreneur, risk assessment, Security Assesment, Security Policy, social media, Social network
Tags: , , , , ,
0

Image by ivanpw via Flickr Social Media Policy Social Media has become part of the user community several years ago. Today we have social media in the corporate environment. The main problem we have is how social media has evolved. It has been a bottom up approach. By bottom up I mean that the consumer [...]

Data Lifecycle Management: How to reduce risk (part1)

Posted: 21st April 2010 by admin in Compliance, risk assessment, Security Assesment, Supplier Security, Unstructured Data
Tags: , , , ,
0

The Data Lifecycle goes through 5 steps: creation, usage, transport, storage and destruction.

What are the features you need a Windows Security Host Diagnostic tool?

Posted: 1st April 2010 by admin in Compliance, Could Computing, HIPAA, Managed Security, PCI, risk assessment
Tags: , , ,
0

Image via Wikipedia There is a lot of focus on network security and application security today. Years ago it was operating system security that was all the rage. But with the advent of the strict requirements of some of the regulations such as HIPAA, PCI, SOX, and FISMA, more attention needs to be paid to [...]

Washington State implements PCI law

Posted: 30th March 2010 by admin in Compliance, Could Computing, HIPAA, PCI, risk assessment, Security Assesment
Tags: , , ,
0

Image via Wikipedia PCI laws are expanding around the country. Washington State is the latest to add a law to their books. Washington state follows Nevada and Minnesota in implementing Payment Card Industry Data Security Standard (PCI), the law is HB 1149. It changes the breach notification law they already had on the books. The [...]

What are the challenges with protecting electronic documents?

Posted: 29th March 2010 by admin in antivirus, Compliance, Corporate Stupidity, risk assessment, Security Assesment
Tags: , , , , ,
0

Image via Wikipedia We have seen a lot of problems with Adobe vulnerabilities. Adobe has been getting beat up with all the negative publicity in the past few months. Apple is restricting access to Adobe on their devices. Has anyone tried their remote desktop sharing? I wonder if some vulnerability will be release in that [...]

When will Vendors provide Risk Assessments of their products?

Posted: 17th February 2010 by admin in antivirus, Compliance, Hacking News, risk assessment, Security Assesment, Supplier Security, Web Security
Tags: , , , , , , , , ,
0

Image via Wikipedia Vendor risk assessment are not part of everyday corporate managememnt but it should be. If you drive a car and every week you have to get something fixed it would prove pretty annoying, disgusting, outrageous and you probably you would never buy that model again and probably wouldn’t by from that manufacturer [...]

FTC’s Additional Rules for HIPAA Security

Posted: 23rd August 2009 by admin in Compliance, Government Security, HIPAA, risk assessment, Security Assesment
Tags: , , ,
0

FTC’s Additonal Rules for HIPAA Security The Federal Trade Commission (FTC) recently issued a rule which gives more scope to the data breach notification rules as part of the Health Insurance Portability and Accountability Act (HIPAA). The addition targets companies that provide health info in an online storage facitlity. Things like Google Health or Healthvault [...]