My friend and colleague, Chris Grillo, the Information Security Director for Medica, is expanding his team. He sent me the following, and I thought some of my readers might be interested in these opportunities:
Archive for March, 2007
Information Security Practitioner Opportunities
Monday, March 5th, 2007Information Security Practitioner Opportunities
Monday, March 5th, 2007My friend and colleague, Chris Grillo, the Information Security Director for Medica, is expanding his team. He sent me the following, and I thought some of my readers might be interested in these opportunities:
FTC’s COPPA Report Recommends Larger Penalties and More Education
Monday, March 5th, 2007The February 2007 FTC Report to Congress, “Implementing the Children’s Online Privacy Protection Act” (COPPA) provides a good look into the compliance actions and failures of numerous organizations to appropriately comply with this law designed to protect the privacy of children under 13 years of age.
FTC’s COPPA Report Recommends Larger Penalties and More Education
Monday, March 5th, 2007The February 2007 FTC Report to Congress, “Implementing the Children’s Online Privacy Protection Act” (COPPA) provides a good look into the compliance actions and failures of numerous organizations to appropriately comply with this law designed to protect the privacy of children under 13 years of age.
Office Email Systems Are Not For Personal Use: Common Sense Reminders For Your Employees
Sunday, March 4th, 2007Sunday the New York Times printed a nice article about email privacy and monitoring, “The Risk Is All Yours in Office E-Mail”
Maine Seed Company Website Hacked: Demonstrates SMB Vulnerability & Questions Hacker Safe Seals
Saturday, March 3rd, 2007This is the time of the year that thoughts turn to gardening as seed catalogs start filling the mailboxes. I enjoy having fresh-grown vegetables from my garden; nothing is better than a deep red, ripe, juicy Big Boy Beefsteak tomato right off the vine. These seed companies are overwhelmingly small to medium-sized businesses (SMBs). Many have gone online in the past few years, bucking the century-long tradition of depending primarily upon postal mail for their sales.
Vermont State Privacy Breach Follow-up: Penetration Testing Reveals No Additional Vulnerabilities
Friday, March 2nd, 2007After the January Vermont State privacy breach through a remote attack that compromised Social Security numbers and bank account numbers for nearly 70,000 people, Governor Jim Douglas ordered a security review of the computer systems.
Addressing Web-Based Access and Authentication Challenges
Friday, March 2nd, 2007Many incidents occur through access control and authentication vulnerabilities. Just consider the recently reported Fruit of a Loom incident that allowed easy access to 1,006 names and Social Security numbers of former employees. It is likely poorly constructed and inadequately tested applications controls resulted in this breach, not unlike so many other breaches that have occurred.
Punitive Actions Pursued Against Professor in Japan Who Had PII About 8,800 on Disk That Was Stolen
Thursday, March 1st, 2007The differences throughout the world with which personally identifiable information (PII) privacy breaches are penalized is always interesting to me.
Today it was reported that the