Archive for January, 2008
Thursday, January 31st, 2008
When I started blogging a couple of years ago (actually in January 2006…just realized I passed my anniversary!), I would not only post daily to my blog, but I would also publish 3 – 4 research papers or white papers to this site each month. Last year I stopped doing that and spent more time providing more analysis and opinions within my daily blog postings.
(more…)
Tags:awareness and training, Information Security, IT compliance, policies and procedures, privacy, privacy policy, risk management, security awareness, security training
Posted in Miscellaneous | 2 Comments »
Thursday, January 31st, 2008
Today, “Internet failure hits two continents”
Were you impacted? If you were, then you probably aren’t reading this right now… 🙂
(more…)
Tags:awareness and training, BCP, business continuity planning, CNN, disaster recovery, DRP, Information Security, IT compliance, policies and procedures, privacy, privacy policy, risk management, security awareness, security training
Posted in Information Security | No Comments »
Thursday, January 31st, 2008
Today, “Internet failure hits two continents”
Were you impacted? If you were, then you probably aren’t reading this right now… 🙂
(more…)
Tags:awareness and training, BCP, business continuity planning, CNN, disaster recovery, DRP, Information Security, IT compliance, policies and procedures, privacy, privacy policy, risk management, security awareness, security training
Posted in Information Security | No Comments »
Wednesday, January 30th, 2008
While scanning the news blurb summaries today, the statement, “This is a violation of HIPAA.” caught my eye. Hmm…let’s see what this is about…
This statement was actually within the reader comments to the story, “Blue Cross reports theft of computer.”
(more…)
Tags:awareness and training, Blue Cross/Blue Shield, encryption, HIPAA, Information Security, IT compliance, patient privacy, PHI, PII, policies and procedures, privacy, privacy policy, protected health information, risk management, security awareness, security training, stolen laptop
Posted in Privacy Incidents | 3 Comments »
Wednesday, January 30th, 2008
While scanning the news blurb summaries today, the statement, “This is a violation of HIPAA.” caught my eye. Hmm…let’s see what this is about…
This statement was actually within the reader comments to the story, “Blue Cross reports theft of computer.”
(more…)
Tags:awareness and training, Blue Cross/Blue Shield, encryption, HIPAA, Information Security, IT compliance, patient privacy, PHI, PII, policies and procedures, privacy, privacy policy, protected health information, risk management, security awareness, security training, stolen laptop
Posted in Privacy Incidents | 2 Comments »
Tuesday, January 29th, 2008
Tags:AccuSearch, awareness and training, FTC Act, Information Security, IT compliance, policies and procedures, pretexting, privacy, privacy policy, risk management, security awareness, security training
Posted in Non-compliance Sanctions Examples | No Comments »
Tuesday, January 29th, 2008
Tags:AccuSearch, awareness and training, FTC Act, Information Security, IT compliance, policies and procedures, pretexting, privacy, privacy policy, risk management, security awareness, security training
Posted in Non-compliance Sanctions Examples | No Comments »
Monday, January 28th, 2008
Tags:awareness and training, cell phone, Christine Beatty, Information Security, IT compliance, Kwame Kilpatrick, messaging security, policies and procedures, privacy, privacy policy, risk management, security awareness, security training, text messages
Posted in Privacy and Compliance | 2 Comments »
Monday, January 28th, 2008
Tags:awareness and training, cell phone, Christine Beatty, Information Security, IT compliance, Kwame Kilpatrick, messaging security, policies and procedures, privacy, privacy policy, risk management, security awareness, security training, text messages
Posted in Privacy and Compliance | 1 Comment »
Sunday, January 27th, 2008
Last Thursday I posted about how tomorrow (1/28) is International Data Privacy Day.
I was delighfully surprised to receive an email in response to my blog post from Leonardo Cervera, the coordinator of Data Privacy Day 2008! Be sure to check out his site to find comprehensive information about all the activities being done for Data Privacy Day, as well as seeing the world-wide support Data Privacy Day is being given…it is good to see government agencies and large corporations acknowledging the importance of preserving privacy.
(more…)
Tags:awareness and training, Data Privacy Day, Information Security, IT compliance, Leonardo Cervera, policies and procedures, privacy, privacy policy, privacy training, risk management, security awareness, security training
Posted in Privacy and Compliance | No Comments »
