Search Results for: PPD-8 Presidential Policy Directive

FEMA Petitions for Private and Nonprofit Sector Input to Latest PPD-8 National Framework Documents

Private sector awareness and preparedness have always been a prime focus of FEMA’s  “National Frameworks” programs  --- which are part of the Presidential Policy Directive 8 / PPD-8: National Preparedness initiatives. In an earlier posting on this website (“National Preparedness System Description Announced by FEMA”), FEMA clearly stated its position that our nation will be best prepared when we all work together to make that happen. To keep that focus FEMA is once again seeking information and feedback from the whole community regarding what they think about a series of new documents … [Read more...]

Google Plans to Alter Privacy Policy and Terms of Service

The actions and decisions of Google can potentially affect many information security teams in organizations across the globe.  With that thought in mind, a recent announcement by Google to alter its privacy policy and terms of service to reflect the fact that it is now going to combine data from its various services into a single user profile may well be an event that requires close study, review and evaluation regarding an organization’s own existing privacy policy – i.e. particularly where services such as Google are involved. It goes without saying that this privacy change by Google … [Read more...]

National Strategy for Trusted Identities in Cyberspace Policy Statement Released by White House

For those readers responsible for information or data security, privacy rights or crisis management surrounding threats in the cybersecurity environment, you might want to add a recent online privacy strategy policy just released by the White House to your team’s reading resource library list.   President Barack Obama just released a “National Strategy for Trusted Identities in Cyberspace” document showing how the government will work with the private sector to develop what's described as an electronic "identity ecosystem" to protect privacy and curb online fraud.  It is anticipated that this … [Read more...]

Is PPD-8 Re-Creating the Wheel in Terms of Preparedness Policy?

Earlier this month this website published a posting regarding the April 8th release of the Obama Administration's Presidential Policy Directive-8 (PPD-8), and if you are on a committee or team in your organization which is evaluating or in fact implementing a preparedness directive such as a PS-Prep program; a workforce resilience study, or a business continuity plan to meet supply chain requirements, then adding this PPD-8 as a reference reading resource might be a good idea. If you have already done that or perhaps already read this PPD-8 directive, we would be very interested in hearing … [Read more...]

Emergency Preparedness Plan (PPD-8) Issued by White House

Please join the Homeland Security Policy Institute for a discussion about Presidential Policy Directive - 8: National Preparedness, featuring Brian Kamoie, Senior Director for Preparedness Policy on the White House National Security Staff. President Barack Obama signed a new Presidential Policy Directive on National Preparedness last week and the Directive will be publicly released at this event. The new policy outlines the President's vision for strengthening the security and resilience of the United States through systematic preparation for threats to the security of the Nation, including … [Read more...]

Mobile Device Security Policy Tips

Many internal information security and privacy control team members struggle to establish and maintain good security controls within their organization in the area of mobile devices.  After much frustration they often return to and focus on a simple question:  How can our organization support the use of mobile devices in our day-to-day business activities without compromising security?  We believe an article written by Joel Snyder and posted on the SearchMidmarketSecurity.com website attempts to answer that question, and,  also add some  interesting insight and direction for your company’s … [Read more...]

Growing Organizational Use of Mobile and Wireless Devices Demands Policy Updates

As a growing number of mobile and wireless devices become a part of business processes in so many organizations, it seems obvious that more companies must now be addressing the need to manage these new process components. We imagine that this situation is already on the radar screens of information security and corporate compliance managers in those organizations and thus is an important part of many meetings where those present are held responsible for mitigating this critical risk management issue for those organizations. In a recent article posted by Susan Hall on the ITBusiness Edge … [Read more...]

DoD Issues New Information Security Policy Directive to Their Supply Chain

In a recent article written by Jason Miller, Executive Editor for the Federal News Radio, we are told that the Department of Defense (DoD) has recently issued a new policy to protect military information on or going in between unclassified networks run by contractors and the government. We believe that this new policy may be a good benchmark for our readers to use in writing their own organization’s information security policies for vendors and contractors in their supply chain(s). As part of this new policy's requirements,  the DoD and the Defense Industrial Base (DIB) are to create an … [Read more...]

Security Policy — Components of a Good Policy

By:  Lisa DuBrock, CPA, CBC Whether you are tasked with writing your organization’s Information Security Policies or updating an existing security policy or security policies, knowing what is in a well crafted policy is important.  Below are details of many of the areas you should include: Security Definition – All security policies should include a well-defined security vision for the organization.  The security vision should be clear and concise and convey to readers the intent of the policy.  Also included in this section should be details of what if any security standards your … [Read more...]

Privacy Policy

ABOUT US Continuity Compliance (“We”) commit ourselves to protecting and respecting your privacy when visiting our website. This privacy policy sets out how we will process and use any personal data that you provide to us, or that we may collect as a result of visiting www.continuitycompliance.org.  Please read the following information to understand our practices with regards to your personal data and how we will treat it. INFORMATION WE MAY COLLECT FROM YOU We may collect and process the following data about you: Any information that you provide by filling in forms on our site.  This … [Read more...]