Yesterday (Wednesday) was the final day of the IAPP Privacy Academy, and it was a great conference for me! I have been preaching about information security and privacy collaboration within a 2-day training seminar over the past 2 years, so it is good to finally start hearing others recognize and promote the need for information security and privacy practitioners to work together.
Posts Tagged ‘policies and procedures’
Microsoft’s Charney Agrees That Information Security and Privacy Pros Must Work Together
Thursday, October 25th, 2007Average Cost of ID Theft Per Victim is $31,356
Wednesday, October 24th, 2007Finally, a report that looks much more accurate with regard to how much identity theft costs the VICTIMS of a privacy breach. Most reported victim costs that I have seen in the past seemed much too low considering all the time that victims talked about trying to repair and recover from identity theft, and how much resources it took, the many years it often takes, and so on.
Training Info Sec and Privacy For Incident Response; Many Issues Overlap
Tuesday, October 23rd, 2007It has been great talking in-depth about privacy issues over the past two days here at the IAPP Privacy Academy.
We had a great turnout for the pre-conference seminar; the room was filled to the 60-person capacity. It was good to hear the concerns and common practices of the diverse organizations for how they are providing privacy training and awareness.
Helping Privacy Pros Deliver Effective Privacy Training and Awareness
Monday, October 22nd, 2007Today I am co-delivering training with 4 other privacy education pros at the IAPP Privacy Academy pre-conference seminar, “Training 360¬∞: How to Educate the Enterprise.”
Best privacy advisers in 2007
Saturday, October 20th, 2007On Thursday, 10/18, Computerworld released their list of “The best privacy advisers in 2007”
How To Answer Four Questions Executives Have About Data Leakage
Friday, October 19th, 2007Last week I had the opportunity to discuss what executives need to know about preventing data leakage with Richard Swart at bankinfosecurity.com for a podcast that was posted earlier this week.
The World is Miffed About Spam & Phishing
Thursday, October 18th, 2007Several weeks ago I got spam from an information security company about a seminar they are putting on. I did not respond; I wasn’t interested. Since that time I have received many messages, all with the same content, from various people from that organization, the tone of which really ticked me off. The following is an excerpt.
Data Will Always Be Less Safe In The Future…I Don’t Want To Get Gussied Up To Talk On The Phone
Wednesday, October 17th, 2007I have a blog problem…there are way too many things I want to blog about and not enough hours in the day to do it! Throughout each day I note news items from the TV, or website news articles, or research, or reports, or just observations while at businesses or in public, and I only have a chance to blog about a small fraction of them. Today I think I’ll just briefly mention five of the topics I’ve planned to blog about, along with a brief note about each, and then maybe I’ll be able to revisit them sometime in the near future and discuss them at greater length.
Finding a Five Leaf Clover!
Tuesday, October 16th, 2007Something very cool…my son Noah found a five-leaf clover today while waiting to be picked up at school. We are going to laminate it, then I’ll take a photo and post it on my site.
Trending Towards More Business Applied Employee Sanctions For Security Incidents
Monday, October 15th, 2007I’ve been noticing lately more and more organizations sanctioning their employees for not following information security policies. I first blogged about it recently on September 24 about a hospital actively enforcing sanctions for HIPAA violations, then again on October 10 about another hospital sanctioning employees for noncompliance, then again on October 11, and then again just yesterday.
