Posts Tagged ‘privacy training’
Wednesday, February 4th, 2009
Tags:awareness and training, HIPAA, Information Security, Institute of Medicine, IOM, IT compliance, IT training, policies and procedures, privacy rule, privacy training, risk management, security training
Posted in Laws & Regulations, Privacy and Compliance | No Comments »
Tuesday, February 3rd, 2009
Do any of you really think that there is a single place on earth that cannot be looked down upon from satellites too high in the sky to see with the naked eye? Google continues their march to know all and see all…
(more…)
Tags:awareness and training, google, Information Security, IT compliance, IT training, policies and procedures, privacy training, risk management, security training, surveillance
Posted in Miscellaneous, Privacy and Compliance | No Comments »
Monday, February 2nd, 2009
Boy, all throughout the day I heard on the radio, and it was all over the noon and evening news, that Iowa customers of MetaBank were receiving text messages on their phones to call MetaBank about unusual activity in their account…
(more…)
Tags:awareness and training, Information Security, IT compliance, IT training, MetaBank, phishing, policies and procedures, privacy training, risk management, security training
Posted in identity theft, Information Security, Privacy and Compliance, Privacy Incidents | No Comments »
Monday, February 2nd, 2009
I just ran across a privacy law non-compliance fine news report from Australia that was published October 22, 2008…
(more…)
Tags:Australia, awareness and training, Do Not Call, Information Security, IT compliance, IT training, noncompliance penalty, policies and procedures, privacy training, risk management, security training
Posted in Laws & Regulations, Non-compliance Sanctions Examples, Privacy and Compliance | No Comments »
Thursday, January 29th, 2009
A few months ago I blogged about some of the privacy issues related to Google streetview here and here.
I just noticed that Google has a nice, short video on YouTube that explains how to get images removed from Google streetview…
(more…)
Tags:awareness and training, Google streetview, Information Security, IT compliance, IT training, policies and procedures, privacy training, risk management, security training
Posted in Miscellaneous, Privacy and Compliance | 1 Comment »
Wednesday, January 28th, 2009
So, what are you doing to raise awareness about privacy issues today?
I’m sending various awareness communications to several mailing lists and online groups I belong to. Here’s the message I sent to my school parents’ mailing list…
(more…)
Tags:awareness and training, Data Privacy Day, Information Security, IT compliance, IT training, policies and procedures, privacy training, risk management, security training
Posted in Privacy and Compliance, Training & awareness | No Comments »
Monday, January 26th, 2009
Over the past few months during some of my presentations I’ve discussed how easily PII can be stored on mobile storage devices that most business leaders and information security folks often do not think about or overlook. One of those devices is the innocent-looking and seemingly benign MP3 player, such as the cool ipod. You gotta love’em! I know I love mine. However, a couple of times when I talked about how easy it is to store large amounts of company data, including personally identifiable information (PII), onto MP3 players, I got some noticeable snickers and sneers from a few in the audience who apparently thought such an idea was preposterous!
Well, here are a couple of different news articles that demonstrates otherwise; both about the same incident, but each with slightly different information…
(more…)
Tags:awareness and training, Information Security, ipod security, IT compliance, IT training, mobile security, policies and procedures, privacy breach, privacy training, risk management, security incident, security training
Posted in Information Security, Privacy and Compliance, Privacy Incidents | No Comments »
Monday, January 26th, 2009
Over the past few months during some of my presentations I’ve discussed how easily PII can be stored on mobile storage devices that most business leaders and information security folks often do not think about or overlook. One of those devices is the innocent-looking and seemingly benign MP3 player, such as the cool ipod. You gotta love’em! I know I love mine. However, a couple of times when I talked about how easy it is to store large amounts of company data, including personally identifiable information (PII), onto MP3 players, I got some noticeable snickers and sneers from a few in the audience who apparently thought such an idea was preposterous!
Well, here are a couple of different news articles that demonstrates otherwise; both about the same incident, but each with slightly different information…
(more…)
Tags:awareness and training, Information Security, ipod security, IT compliance, IT training, mobile security, policies and procedures, privacy breach, privacy training, risk management, security incident, security training
Posted in Information Security, Privacy and Compliance, Privacy Incidents | No Comments »
Sunday, January 25th, 2009
I recently blogged about the upcoming international Data Privacy Day on January 28 here.
You and/or your organization can get involved in a number of ways, even at this relatively late date. Here are a few more ideas for you to consider…
(more…)
Tags:awareness and training, Data Privacy Day, Information Security, IT compliance, IT training, policies and procedures, privacy training, risk management, security training
Posted in Privacy and Compliance, Training & awareness | No Comments »
Friday, January 23rd, 2009
I thought it was pretty silly to read over the past few weeks that President Obama was being pressured to give up his Blackberry because of security reasons. If information security controls are properly implemented, then there is no reason that the president of the U.S., or any other person for that matter, should not use a smartphone!
I was happy to see the following article published by CNN…
(more…)
Tags:awareness and training, Barack Obama, blackberry, Information Security, IT compliance, IT training, policies and procedures, privacy training, risk management, security training, smartphone security
Posted in government, Information Security | No Comments »
