Posts Tagged ‘risk management’
Friday, January 4th, 2008
Well, after over a year of fervent campaigning by many presidential hopefuls, the Iowa caucuses are over! As I mentioned a couple of days ago I have never declared a party before, but this year I wanted to be part of the caucus experience. I wanted to participate and see first-hand what it was like and not just have some political pundits from the east or west coasts giving their inaccurate opinions of what really goes on.
(more…)
Tags:awareness and training, Barack Obama, Bill Richardson, democrats, Hillary Clinton, Information Security, Iowa caucus, IT compliance, John Edwards, policies and procedures, privacy, republicans, risk management, security awareness, security training, wired, YouTube
Posted in Miscellaneous | 1 Comment »
Thursday, January 3rd, 2008
I recently blogged about “6 “Scary Stuff” Privacy Terms IT, Info Sec and Privacy Folks Should Know.”
I was very pleasantly surprised to hear from Dr. Michael G. Michael and his wife Dr. Katina Michael a couple of days ago about the post! (Thank you Michael and Katina!) They provided some additional very interesting information about the term “√úberveillance.” With their permission, here is a large portion of the message they sent to me:
(more…)
Tags:ambient technology, awareness and training, Dr. Katina Michael, Dr. Michael G. Michael, employee privacy, employee tracking, GPS tracking, Information Security, IT compliance, policies and procedures, privacy, privacy law, RFID, risk management, security awareness, security training, social security number, SSN, uberveillance
Posted in Privacy and Compliance | No Comments »
Wednesday, January 2nd, 2008
I am happy to live in Iowa. I’ve enjoyed getting to see the presidential hopefuls in the state for the past 1+ years. I always vote during presidential elections, but I’ve never yet declared a party; I really don’t want to be listed in who knows how many places under such a label. However, this year I would really like to participate in the Iowa caucus.
(more…)
Tags:awareness and training, CNN, democrats, Howard Dean, Information Security, Iowa caucus, IT compliance, policies and procedures, privacy, republicans, risk management, security awareness, security training, YouTube
Posted in government | No Comments »
Sunday, December 30th, 2007
Tags:Authorities Principles of Business, awareness and training, FSA, identity verification, Information Security, IT compliance, Norwich Union Life, personally identifiable information, PII, policies and procedures, pretexting, risk management, security awareness, security training
Posted in Non-compliance Sanctions Examples | No Comments »
Friday, December 28th, 2007
I like to carry extra laptop and cell phone batteries with me when I travel for more than a couple of days at a time, especially if going outside the country. I fried a cell phone once using a faulty outlet converter overseas, so now I like to play it safer by depending upon extra batteries. It was fairly simple to pack the extra batteries into my checked luggage. It was a good simple way to have a backup power source while travelling.
Well, as of next Tuesday that simplicity is no more.
(more…)
Tags:awareness and training, Department of Homeland Security, department of transportation, Information Security, IT compliance, lithium batteries, policies and procedures, risk management, security awareness, security training, travel safety, U.S. law
Posted in Laws & Regulations | 1 Comment »
Thursday, December 27th, 2007
On December 10 the U.S. Federal Trade Commission (FTC) announced that the FTC commissioners voted unanimously to have principles to govern online behavioral advertising. At the same time they released their proposed principles to guide the development of self-regulation in this area.
(more…)
Tags:awareness and training, behavioral advertising, cookies, FTC, FTC Act, Information Security, IT compliance, policies and procedures, privacy, privacy policy, privacy principles, risk management, security awareness, security training, web bugs
Posted in Laws & Regulations, Privacy and Compliance | No Comments »
Wednesday, December 26th, 2007
Tags:American United Mortgage Company, awareness and training, disposal rule, FACTA, FCRA, FTC, FTC Act, GLBA, Information Security, IT compliance, policies and procedures, privacy, privacy incident, privacy policy, privacy rule, risk management, security awareness, security training
Posted in Information Security, Non-compliance Sanctions Examples, Privacy and Compliance | No Comments »
Friday, December 21st, 2007
This morning I did a podcast interview with bankinfosecurity and they already have it posted!
During the interview I answered and expanded upon five questions and issues:
(more…)
Tags:awareness and training, bankinfosecurity, breach response, incident response, Information Security, IT compliance, policies and procedures, privacy, privacy breach, privacy policy, risk management, security awareness, security training
Posted in Privacy and Compliance | No Comments »
Friday, December 21st, 2007
It is time for some humorous entertainment to complement the holiday season, and PGP Corporation has provided it!
Kevin Beaver pointed me to a great YouTube clip, “The 12 Threats of Christmas.”
(more…)
Tags:awareness and training, Information Security, IT compliance, Kevin Beaver, PGP, policies and procedures, privacy, privacy policy, risk management, security awareness, security training
Posted in Training & awareness | No Comments »
Thursday, December 20th, 2007
Most folks are looking at what’s coming in 2008. Heck, let’s go a bit further and look at some potentially big changes slated for 2009!
I just read an interesting Business Week story, “Just Ahead: A Wider Wireless World.”
In February, 2009 analog television broadcasting will be terminated.
(more…)
Tags:awareness and training, Information Security, IT compliance, policies and procedures, privacy, privacy policy, risk management, security awareness, security training, wireless security
Posted in Information Security | 1 Comment »
