Posts Tagged ‘security’

Data Lifecycle Management: How to reduce risk, Part 2

Posted: 2nd May 2010 by admin in Compliance, Vendor Risk
Tags: , , , , , , ,
Comments Off

Data Lifecycle Management: How to reduce risk Part 2 The Data Lifecycle Management (DLM) goes through 5 steps: creation, usage, transport, storage and destruction. Most companies have parts of this lifecycle under control, but that means there are lots of areas for gaps in the control measures that could let a threat affect the data. [...]

Data Lifecycle Management: How to reduce risk (part1)

Posted: 21st April 2010 by admin in Compliance, Security Assesment, Supplier Security, Unstructured Data, risk assessment
Tags: , , , ,
Comments Off

The Data Lifecycle goes through 5 steps: creation, usage, transport, storage and destruction.

Washington State implements PCI law

Posted: 30th March 2010 by admin in Compliance, Could Computing, HIPAA, PCI, Security Assesment, risk assessment
Tags: , , ,
Comments Off

Image via Wikipedia PCI laws are expanding around the country. Washington State is the latest to add a law to their books. Washington state follows Nevada and Minnesota in implementing Payment Card Industry Data Security Standard (PCI), the law is HB 1149. It changes the breach notification law they already had on the books. The [...]

What are the challenges with protecting electronic documents?

Posted: 29th March 2010 by admin in Compliance, Corporate Stupidity, Security Assesment, antivirus, risk assessment
Tags: , , , , ,
Comments Off

Image via Wikipedia We have seen a lot of problems with Adobe vulnerabilities. Adobe has been getting beat up with all the negative publicity in the past few months. Apple is restricting access to Adobe on their devices. Has anyone tried their remote desktop sharing? I wonder if some vulnerability will be release in that [...]

Can you protect yourself on Social Media?

Posted: 1st March 2010 by admin in Identity theft, Social network, antivirus, social media
Tags: , , , , , , , , , , , ,
Comments Off

Image via Wikipedia One of the greatest challenges to privacy and security in the next several years is Social Networks and Social Media. Sites like Facebook, Twitter, LinkedIn, MySpace and others can be the downfall of valuing information. The ability to share and provide information is completely the opposite of network security requirements.  This is [...]

When will Vendors provide Risk Assessments of their products?

Posted: 17th February 2010 by admin in Compliance, Hacking News, Security Assesment, Supplier Security, Web Security, antivirus, risk assessment
Tags: , , , , , , , , ,
Comments Off

Image via Wikipedia Vendor risk assessment are not part of everyday corporate managememnt but it should be. If you drive a car and every week you have to get something fixed it would prove pretty annoying, disgusting, outrageous and you probably you would never buy that model again and probably wouldn’t by from that manufacturer [...]

Ponemon Institute Cyber megatrends – Some Additions Needed

Posted: 28th November 2009 by admin in Compliance, Corporate Stupidity, Could Computing, Outsourcing, Unstructured Data, Web 2.0
Tags: , ,
Comments Off

Ponemon Institute recently released their  Cyber megratrends as listed below. While I agree with these I think there were a couple that could easily be added to the list. First, I would either add or modify Web 2.0 into Web 3.0. Lets look to what is going to happen versus what is happening. Incremental change [...]

HIPAA Vendor Compromised Healthcare Records

Posted: 12th November 2009 by admin in HIPAA
Tags: , , , ,
Comments Off

This is story that is several months old, but as I came across it, i thought it would make a good point. A vendor handling healthcare records has lost social security numbers of people in March of 2009. In this case, Health insurer Aetna, Inc., is reportedly providing 65,000 individuals with free credit monitoring for [...]

IPhone Apps Every Road Warrior Entrepreneur Needs

Posted: 22nd October 2009 by admin in Compliance, Could Computing, Entrepreneur, HIPAA, antivirus
Tags: , , , , , , , , , , , ,
Comments Off

The Blackberry has been the mainstay of the business world for years. But as we know, the IPhone is eating away at market share. There are over 75,000 apps for the IPhone now and growing steadily. For those who have Blackberry Thumb, you can probably look forward to IPhone Index Finger at some point in [...]

Stolen laptop with employee information- yet again

Posted: 7th August 2009 by admin in Corporate Stupidity, Identity theft
Tags: , , , , , ,
Comments Off

Stolen laptop with employee information- yet again The Associated Press reported that a Williams Cos. Inc. laptop containing personal and compensation information was stopen from a workers vehicle. The laptop had over 4,400 current and former employees records. Information like names, birth dates, Social Security numbers and compensation data was on it. How many times [...]

US to set out cyber security plan -Baha to the rescue

Posted: 29th May 2009 by admin in Compliance, Corporate Stupidity, Government Security
Tags: , , , , ,
Comments Off

Why did it takes us over 2 decades to really approach the cybersecurity topic. When I started in informatio security in in 1994, it was the wild west. People were creating processes, developing security frameworks and growing a whole new industry. I like to think I played some part in being on the early team [...]

Laptop Encryption – Serious lack of security

Posted: 30th April 2009 by admin in Hacking News, Managed Security
Tags: , , , , , ,
Comments Off

I believe that more personal information has been stolen than there are actual people in the US. How much was stolen from the government would prove a nice study. And has anyone in the government actually been fired? So the employee lost the laptop. Do you blame the employee or the agency for not educating [...]