I’ve blogged several times, such as here, here and here, about how information posted to the Internet, such as on Facebook and other social networking sites, cannot be considered as being private or secure, have been used to make hiring and firing decisions, and how it has impacted lives in other ways.
Well, now information posted to social networking sites are being used by schools.
Posts Tagged ‘facebook’
13 Minnesota Students Disciplined For Facebook Photos
Friday, January 11th, 2008Tags:awareness and training, Eden Prairie, facebook, Information Security, IT compliance, personal privacy, personally identifiable information, PII, policies and procedures, privacy, protecting information, risk management, security awareness, security training, social networking
Posted in Privacy and Compliance | No Comments »
Do Employers Need GPS And Logs When They Have YouTube and Facebook To Monitor Employees?
Thursday, November 29th, 2007I don’t know why I continue to be surprised at the stupid things some people do, but apparently some people will never realize how much of themselves they are giving away when they post their pictures and other personal information on the Internet. My friend Alec (thanks again, Alec!) pointed me to a perfect example of what a growing number of people are doing…apparently thinking their employers are not savvy enough to be able to use the Internet.
Tags:awareness and training, employee privacy, facebook, Information Security, IT compliance, policies and procedures, privacy, privacy breach, privacy incident, risk management, security risk, security training
Posted in Privacy and Compliance | No Comments »
5 Things To Do Next Week To Improve Information Security & Privacy
Friday, November 9th, 2007It seems like my to-do list never gets shorter each day; only longer. This was even more true when I was responsible for the information security and privacy program within a large multi-national financial and insurance organization. It seemed the squeakiest wheel to-do items often got done, while other to-do’s that were very important, and often not that time-consuming, got put by the way-side, always put off until another week.
Tags:awareness and training, business networking, facebook, Information Security, IT compliance, LinkedIn, MySpace, personally identifiable information, PII, policies and procedures, privacy, privacy training, protecting information, risk management, security training, social networking
Posted in Information Security, Privacy and Compliance, Training & awareness | No Comments »
More Organizations Are Blocking Social Networking Sites To Address Information Security and Privacy Concerns
Thursday, November 8th, 2007Over the past few months I’ve been keeping a fairly close eye on the evolution of social networks and the security and privacy impacts they have not only on the individuals participating, but also on the businesses that allow their personnel to use the sites from the company’s network. Or, what is more often the case, the large amount of employees using the sites from the company network during work hours unbeknownst to their bosses.
Tags:awareness and training, Barracuda Networks, facebook, Information Security, IT compliance, MySpace, policies and procedures, privacy, privacy training, risk management, security training, social networking
Posted in Information Security, Privacy and Compliance | No Comments »
Who Would Want to Be a CISO or CPO for a Social Networking Site?
Friday, October 5th, 2007This morning I spoke with a reporter from billingworld.com about social networking sites, innovation and partnering established businesses with new sites such as this and the risks involved. After the call I continued to think about this and jotted down a few notes…
Tags:awareness and training, billingworld, facebook, Information Security, IT compliance, new york attorney general, orkut, policies and procedures, privacy, protecting information, risk management, security awareness, social network
Posted in Information Security, Privacy and Compliance | No Comments »
Emotions Are Mixed for Using Social Networking Sites At Work
Tuesday, August 28th, 2007Well, if you look at the results of my very unscientific poll from last week, it appears there is a very wide range of opinions about the use of social networking sites at work.
Tags:awareness and training, facebook, Information Security, IT compliance, MySpace, personally identifiable information, PII, policies and procedures, privacy, risk management, social networking, YouTube
Posted in Information Security, Privacy and Compliance | 2 Comments »
Very Wide Range of Opinions For the Social Networking Poll
Friday, August 24th, 2007I’m surprised by how different the opinions are for this week’s poll about using social networking sites at work!
If you haven’t clicked a poll button for it yet (see right side of screen and scroll down a little), please do so. It will be interesting to see if the opinions stay so widely scattered by the end of Sunday.
Tags:awareness and training, facebook, Information Security, IT compliance, MySpace, policies and procedures, privacy, risk management, social networking
Posted in Information Security | No Comments »
Speaking of Social Networking Sites…
Monday, August 20th, 2007Over the weekend I read yet another news article about social networking sites and the related risks. This time it was about how schools are implementing rules to address cyber bullying on the Internet; “Students To Be Punished For MySpace Postings.”
Tags:awareness and training, facebook, Information Security, IT compliance, MySpace, personally identifiable information, PII, policies and procedures, privacy, risk management, social networking
Posted in Information Security, Privacy and Compliance | 2 Comments »
Facebook, and Other Social Networking Sites, Will Always be Risky to Use
Friday, August 17th, 2007Just because a social networking site says it is secure, and even if it has “TRUSTe,” “Hacker Safe” or other security and privacy assurance stamps on the site, it does not mean that bad things cannot happen. Take Facebook as a case in point.
Tags:andyitguy, awareness and training, facebook, hacker safe, Information Security, infosecblog, IT compliance, policies and procedures, privacy, risk management, social network, truste
Posted in Information Security, Privacy and Compliance, Privacy Incidents | 2 Comments »
