Security Central Exchange Launched to Bring Security Minded People Together to Improve Their Security Posture

The distinguishing lines and points of differences between physical and technical or network security are becoming harder to find – in fact, the convergence of these areas of security disciplines has been happening at an accelerated rate for nearly ten years. And, given the escalation of threats facing many companies today, there is a strong belief that this continued convergence of security disciplines may in fact be causing potentially new challenges for businesses, consumers and the “average person” having to respond to such security related  risks or threats in a timely manner. The … [Read more...]

Cyber Security Guidance Document Released by SEC

As part of this website’s efforts to educate our readers about this October being National Cyber Security Awareness Month (NCSAM), and to support NCSAM’s theme of Week 3 of this month – e.g. to focus our attention on national and local efforts to prevent identity theft and other cybercrimes --- our staff has organized some additional content and comments regarding the recent release by the Securities and Exchange Commission (SEC) of a cyber security related guidance document. This document is entitled “CF Disclosure Guidance: Topic No. 2” and provides the SEC’s Division of Corporation … [Read more...]

People Continuity and Organizational Resilience

Our staff believes that risk management methodologies and practices are in a constant state of change as the global footprint of doing business today expands.   As a result, a challenge exists where a higher level of  preparedness is now being presented as a shared responsibility to be addressed more collectively now than ever by organizations, communities, governments and individuals. Recently, our staff presented these thoughts to the Personal Recovery Concepts team, and after much discussion, a decision was reached to present a white paper on the topic to our readership.  The title … [Read more...]

Red Flags Rule Enforcement Date Delayed Yet Again

The following was announced today on the HealthCareInfoSecurity website – “Reacting to requests from several members of Congress, the Federal Trade Commission (FTC) has yet again delayed enforcement of the Identity Theft Red Flags Rule until Dec. 31, 2010. The law had been slated to be enforced June 1.” Under the Red Flags Rule, which became effective Jan. 1, 2008, organizations that extend credit to their clients must develop and implement written identity theft prevention programs that help identify, detect and respond to patterns, practices or specific activities, known as "red flags," … [Read more...]

New Identity Theft Affects 3.3 Million Borrowers

In a recent article written by Mary Pilon and published by the Wall Street Journal, it was reported that names, addresses, Social Security numbers and other personal data on borrowers were stolen from the St. Paul, Minn., headquarters of Educational Credit Management Corp. (ECMC), a nonprofit guarantor of federal student loans, during the weekend of March 20-21, 2010. It was also reported that company and federal officials said they believed last week's theft of identity data on 3.3 million people with student loans was the largest-ever breach of such information and could affect as many as … [Read more...]

Identity Theft "Red Flag" Rules Enforcement Date Extended to June 1, 2010

An action has been taken -- at the request of Members of Congress --  by the Federal Trade Commission (FTC) to officially announce a delay of the enforcement of the "Red Flags" Rule until June 1, 2010.  This ruling affects all financial institutions and creditors subject to enforcement by the FTC. For more details and information regarding this Identity Theft "Red Flag"  Rule announcement CLICK HERE. … [Read more...]

"Red Flag Rules": Exemption Ruling Announced

By an overwhelming vote of 400-0, the U.S. House approved legislation on October 20, 2009, that exempt certain businesses from the Federal Trade Commission's Red Flag Rules.  As part of that legislation, the FTC is also required to issue new regulation setting out the exemption processes that allow any business to apply for an exemption. With November 1, 2009 as an announced Red Flag Rule compliance deadline, it is very likely that this new ruling will cause the FTC to at least consider the announcement of another delay for this compliance deadline. Under the current ruling, health care, … [Read more...]