03/15/2012 |
Regulations & Legislation
Most organizations that hold sensitive information likely have at least a rudimentary data breach response plan in place. For many companies, it’s a regulatory or contractual requirement. Other companies may do it as a best practice.
In this End User Client Briefing, Randy Sabett answers questions like: Who do you call? When do you call them? What happens during the engagement?
03/14/2012 |
Regulations & Legislation
Most organizations that hold sensitive information likely have at least a rudimentary data breach response plan in place. For many companies, it’s a regulatory or contractual requirement. Other companies may do it as a best practice.
In this End User Client Briefing, Randy Sabett answers questions like: Who do you call? When do you call them? What happens during the engagement?
09/27/2011 |
Regulations & Legislation
With the exception of HIPAA, nothing has been as transformative to Healthcare Information Technology as HITECH, especially pertaining to requirements around "meaningful use" of EHR.
For providers, when it comes to meaningful use, security can be a scary topic. Since it's a Phase 1 core requirement, it has providers asking questions (and the business associates supporting those
02/09/2011 |
Regulations & Legislation
2011 promises to be a transformational year for the world of data security and privacy. What will compliance look like when it’s over? Will more states implement security regulations like those in Massachusetts? Will Congress finally pass a nationwide data breach bill? At least one thing is certain, enforcement of existing regulations will accelerate - including state laws, the
02/09/2011 |
Regulations & Legislation
2011 promises to be a transformational year for the world of data security and privacy. What will compliance look like when it’s over? Will more states implement security regulations like those in Massachusetts? Will Congress finally pass a nationwide data breach bill? At least one thing is certain, enforcement of existing regulations will accelerate - including state laws, the
02/15/2010 |
Regulations & Legislation
This document is an update to the IANS PoV published in July 2009, Platform Options to Manage IT Risk. Since July 2009, a number of market developments have occurred that IANS thought were relevant to the marketplace:
The regulatory landscape has become more complex, especially with MA201CMR and FTC Red Flag going into effect in 2010. In addition, there is a pending federal data
02/10/2010 |
Regulations & Legislation
Technology skills are no longer the sole prerequisite to becoming a CISO/CSO. Security executives and their teams have seen a rapid evolution in the skills required to be successful. Ten years ago, technology skills were what mattered; today the differentiating skill is the ability to communicate with business leaders in business terms about business risks.
11/02/2009 |
Regulations & Legislation
The 2009 Midwest Information Security Forum, held on November 2nd and 3rd at the Millennium Knickerbocker Hotel in Chicago, brought together more than 110 practicing information security professionals from 74 organizations. On average, delegates had more than 15 years of information security experience.
06/24/2009 |
Regulations & Legislation
The 2009 Lone Star Information Security Forum, held on June 24 and 25 at the Cityplace Conference Center in Dallas, Texas, brought together 150 practicing information security professionals from 88 organizations. On average, delegates had 15 years of information security experience.
05/29/2009 |
Regulations & Legislation
Role Based Access Control (RBAC) is the practice of allowing a user/identity admittance to the location of pertinent data through a defined organizational function as determined by the administrator. Instead of assigning permissions to an individual, the permissions would be assigned to a specific role or job description. A role is created for different job functions within a
Next Event
Space is limited, reserve your spot today