Earlier this week the FTC announced in a press release an identity theft prevention workshop they are hosting April 23 – 24.
Archive for the ‘Training & awareness’ Category
Exploring Identity Verification Solutions and Identity Theft Prevention
Friday, February 23rd, 2007Free Access, For a Limited Time, to Great Information Security, Privacy and Compliance Information
Wednesday, February 21st, 2007For a limited time you can get free access to a ton of great EDPACS papers.
Laptop Theft: Financial Company Given $1.9 Million Penalty Following Incident for Inadequate Security Program
Tuesday, February 20th, 2007For the first time, the United Kingdom financial regulators, the U.K. Financial Services Authority (FSA), gave a financial institution, the Nationwide Building Society, the U.K.’s largest “building society” (a member-owned mortgage lending and banking services institution) a penalty for poor data security, issuing a ¬£980,000 ($1.9 million) fine based on their response to the 2006 theft of a laptop computer containing sensitive customer data according to a February 14 notice from the FSA.
Software Licensing: Free Tools from the BSA & 10 Steps To Compliance
Tuesday, February 6th, 2007I saw an article published on February 1, “United States: 10 Simple Steps To Ensure Software Licensing Compliance.”
Software Licensing: Free Tools from the BSA & 10 Steps To Compliance
Tuesday, February 6th, 2007I saw an article published on February 1, “United States: 10 Simple Steps To Ensure Software Licensing Compliance.”
Free Awareness from the FTC: Phishing
Friday, February 2nd, 2007I ran across this on the FTC site, an email to send to folks that links to an animation to help make them aware of phishing messages; isn’t this cool!? The FTC sight provides this as an awareness raising communication. It’s a little long, and hopefully the folks going to this link will have their sound turned off so it doesn’t shock their desk neighbors, but all in all it is a great, FREE (paid for by U.S. tax dollars), awareness communication to warn about the threats involved with phishing messages.
“Say What You Do”: My New Book Now Available!
Thursday, February 1st, 2007I had the great privilege and pleasure to work with Dorian Cougias, an award-winning author and information security practitioner, Marcelo Halpern, an internationally acclaimed lawyer, and Karsten Koop, also an award winning author and highly experienced IT auditor, to co-author our newly released book, “Say What You Do.”
“Say What You Do”: My New Book Now Available!
Thursday, February 1st, 2007I had the great privilege and pleasure to work with Dorian Cougias, an award-winning author and information security practitioner, Marcelo Halpern, an internationally acclaimed lawyer, and Karsten Koop, also an award winning author and highly experienced IT auditor, to co-author our newly released book, “Say What You Do.”
Risks, Threats & Vulnerabilities: Snowball Lessons
Sunday, January 28th, 2007I have some of the greatest and most illuminating information security and privacy discussions with my 7- and 9-year old sons. Their inquisitiveness and curiosity is unlimited. Their minds are open and ready to soak up everything around them, and to openly question those things that they do not understand, or challenge concepts with which they do not agree. It is too bad that most adults have lost these traits. It is too bad that too many parents and adults with responsibilities for children have squashed these innate qualities in young children instead of helping them to use those traits to blossom and develop into thoughtful, critical-thinking adults.
Privacy Pitfalls
Monday, January 22nd, 2007I had the opportunity to be the guest editor for the October Cutter IT Journal for an issue I called “Avoiding Privacy Pitfalls;” Cutter recently published notice of it.
It was great to put this together through the fantastic and greatly insightful as well as useful contributions of Dr. Andrew Jones, D.J. Vogel, Mark Fischer, David Lineman, Khaled El Emam, Roger CLarke and Timothy Virtue. They discussed privacy issues that organizations often overlook, ignore, or are completely oblivious about. For example, Dr. Andrew Jones describes his very interesting research into all the personally identifiable infromation (PII) on discarded equipment, and Roger Clarke discusses how to use privacy as a strategic factor within an organization.
