June 18, 2013

Posts Comments

You are here: Home / Archives for privacy

Cyber Risk — How Well Are Board Members Managing?

May 14, 2013 By Leave a Comment
photo courtesy of catastrophy property casualty

Protecting a company’s digital assets continues to be a challenging component of a director’s and/or board member’s total fiduciary duties --- and--- with the growing number of regulations now imposing more specific privacy and cyber security related obligations on companies --- answering the question of whether or not those directors are managing cyber risks responsibly begs the need to find out how well those directors are really doing….. To that point, Carnegie Mellon University’s “CyLab” group recently released the results of a survey it conducted which examined data … [Read more...]

Online Privacy Rights Remain Under Attack and Unresolved Issues for Many in 2013

April 9, 2013 By Leave a Comment
Cyber Security

In a recent article, posted by PC World and written by Melissa Riofrio, the topic of online privacy for individuals was addressed in the light of growing threats to that privacy predicted for 2013. And, while a debate may exist about the meaning of privacy between different generations of individuals, the fact is that the data any individual generates on the internet is still a rich trove of information that says more about you than you may realize --- not to mention that it is also a tempting target for marketers and law enforcement officials alike. This year, your online privacy faces … [Read more...]

Social Media Risk Management Becomes Focus of New FFIEC Guidance Draft Document

January 25, 2013 By Leave a Comment
Photo courtesy of bankinfosecurity.com

The ever growing challenge of social media risk management remains a topic of concern and focus for not only financial institutions but also for many organizations now using social media in a variety of ways, including marketing, providing incentives, facilitating applications for new accounts, inviting feedback from the public and engaging with existing and potential customers --- for example, by receiving and responding to complaints. Very recently, the Federal Financial Institutions Examination Council (FFIEC) released proposed guidance on the applicability of consumer protection and … [Read more...]

BYOD – Attend Webinar to Build a Business Case of Support

October 23, 2012 By Leave a Comment

The risks associated with employees now bringing their own smartphones, tablets and mobile storage devices to the job remain a topic on the minds of every information security professional in nearly all organizations. While much has been and will continue to be written on this topic, risk management strategies by many CISO’s are still too often trying to develop defenses that reject this trend rather than trying to find ways to embrace this trend as a means to cut costs and improve productivity. In an exclusive case study now being offered in a webinar format, Intel CISO Malcolm … [Read more...]

Data Breach Report Offers State by State Regulation Requirements

October 9, 2012 By Leave a Comment
Photo courtesy of experian.com

Unfortunately, for many U.S. companies facing the reality of data breach occurrences and data breach notifications – i.e. reaching an agreement on what they are and what are you required to do once they occur – remains a very complex topic yet still poses potentially large economic risk(s) when they occur.  Even more to the point, each state and its jurisdiction requirements within the U.S. differs in one way or another on how to legally handle data breach occurrences and the notification requirements that accompany them..  Just as important, even a local or regional business, … [Read more...]

National Cyber Security Awareness Month Designated for October 2012

October 1, 2012 By Leave a Comment
Photo courtesy of friscoisd.com

  Reminder - President Obama designated this October 2012 as National Cyber Security Awareness Month (NCSAM). NCSAM is designed to engage and educate public and private sector partners through events and initiatives with the goal of raising awareness about cybersecurity and increasing the resiliency of the nation in the event of a cyber incident. October 2012 marks the ninth annual National Cyber Security Awareness Month sponsored by the Department of Homeland Security (DHS) in cooperation with the National Cyber Security Alliance (NCSA) and the Multi-State Information … [Read more...]

e-Discovery Tips for Multinationals in the Asia Pacific Region

July 25, 2012 By Leave a Comment
Photo courtesy of sonian.com

As many of our readers reflect on the fact that e-Discovery laws are quickly developing and changing around the world, and, that the potential risk for their organization to become involved in a potential e-discovery litigation is increasing over time, our staff would like to reference a recent article written by Wayne Wong entitled, “6 Practical tips for e-Discovery in Asia and the Pacific”. Another reason for referencing Mr. Wong’s article is that it does a good job in summarizing the major points of e-discovery concerns which have been observed in the Asia-Pacific region (APAC) – … [Read more...]

BYOD — A Future Game-Changer ?

June 28, 2012 By Leave a Comment
BYOD Related PIC

Judging from several comments recently received from our readers asking for information about the current BYOD trend, and given the fact that there seems to be little doubt that individuals are increasingly tapping into consumer devices (i.e. smartphones, iPads, tablet computers, etc.) and services to support their business roles and boost productivity in unexpected ways ---a strong argument can be made that this BYOD trend could be a game-changer in the future for all companies to ignore at their own peril. According to the Financial Times, the size of the smartphone market has surpassed … [Read more...]

DHS 2011 Data Mining Report Released

March 5, 2012 By Leave a Comment
Photo courtesy of searchterms.com

The Federal Agency Data Mining Reporting Act of 2007, 42 U.S.C. § 2000ee-3, requires DHS to report annually to Congress on DHS activities that meet the Act’s definition of data mining. For each identified activity, the Act requires DHS to provide: 1) a thorough description of the activity; 2) the technology and methodology used; 3) the sources of data used; 4) an analysis of the activity’s efficacy; 5) the legal authorities supporting the activity; and 6) an analysis of the activity’s impact on privacy and the protections in place to protect privacy. This is the … [Read more...]

Privacy and Security Controls in Your Corporate Board Room — Perhaps a Review is Necessary

January 27, 2012 By Leave a Comment
Board room hacking Gretchen Ertl for the New York Times

In a recent article written by NICOLE PERLROTH a potential risk mitigation event was revealed and should be cause for all organization’s to re-verify that camera’s used in their corporate board rooms are properly and verifiably protected from hackers. Ten years ago, videoconferencing systems were complicated and erratic, and ran on expensive, closed high-speed phone lines. Over the last decade, however, videoconferencing — like everything else — migrated to the Internet. Now, many businesses use Internet protocol videoconferencing — a souped-up version of Skype — to connect … [Read more...]

«Older Posts
 
#BusinessContinuity & #DisasterPrep is out! http://t.co/kQAWgR2ySu ▸ Top stories today via @neverfailgroup @MrMahobo @wcdm24 hours ago