How do you even start protecting your information assets if you don’t have an understanding of the risk to them? I would venture to say… you don’t. It’s difficult for some to get started down this path because they quickly get overwhelmed with the task at hand. Many times, a good effort gets set aside [...]
Organizations can quickly become overwhelmed when trying to implement a comprehensive information security program. There are many barriers. Cost. Time. Competency. As I’ve posted before, security is an ongoing process and needs to be in order to deal with the changing business environment and evolving threat landscape. Instead of implementing the very best (and most [...]
The regulatory environment overseeing the protection of sensitive information is incredibly crowded. Sarbanes-Oxley (SOX), Graham-Leach-Bliley (GLB), the Health Insurance Portability and Accountability Act (HIPAA), HITECH, Red Flags, Payment Card Industry Data Security Standard (PCI-DSS), among a host of state laws and audit guidelines seems to provide the Fort Know of IT risk management if organizations [...]
Tandil Wordpress Theme designed by Wp Themes Planet and proudly powered by WordPress