Posts Tagged ‘risk management’

« Older Entries
Newer Entries »

Show Your CFO and CEO the Potential Financial Impact of a Privacy Breach

Friday, November 23rd, 2007

My central Iowa Infragard president, Tom Conley sent all our members a note on Wednesday with a link to a site that contains 9 variables to help demonstrate the range of financial impact to organizations that experience an incident involving personally identifiable information (PII).

(more…)

Tags:, , , , , , , , , ,
Posted in Privacy and Compliance | No Comments »

7 More Reasons Why Sending Cleartext IM and Email Is *NOT* Secure Even If Your Doc Says It Is…Part 2

Wednesday, November 21st, 2007

As a continuation of my blog posting from Monday, here are 7 additional reasons to add to the previous 4 for why sending cleartext instant messages (IMs) and email is not secure:

(more…)

Tags:, , , , , , , , , , , , , , , , ,
Posted in Information Security, Privacy and Compliance | No Comments »

Sending Cleartext IM and Email Is *NOT* Secure Even If Your Doc Says It Is…Part 1

Monday, November 19th, 2007

I got some interesting comments and questions, and lots of good direct feedback, about my blog post on sending cleartext patient information last week, “HIPAA: Beware Doctors Who Claim They Don’t Have To Follow Safeguard and Privacy Requirements” so I wanted to take this opportunity to discuss the topic a little more.

(more…)

Tags:, , , , , , , , , , , , , ,
Posted in Information Security, Laws & Regulations, Privacy and Compliance | No Comments »

Sending Cleartext IM and Email Is *NOT* Secure Even If Your Doc Says It Is…Part 1

Monday, November 19th, 2007

I got some interesting comments and questions, and lots of good direct feedback, about my blog post on sending cleartext patient information last week, “HIPAA: Beware Doctors Who Claim They Don’t Have To Follow Safeguard and Privacy Requirements” so I wanted to take this opportunity to discuss the topic a little more.

(more…)

Tags:, , , , , , , , , , , , , ,
Posted in Information Security, Laws & Regulations, Privacy and Compliance | No Comments »

Personnel Privacy, New I-9 Forms, Removal of SSN Requirements and IT Involvement

Sunday, November 18th, 2007

Early this year I did a data flow analysis for I-9 compliance, and I blogged a few months ago about I-9 related issues in “New Tennessee Law Prohibits Using Federal Individual Taxpayer ID as Proof of Immigration Status.”
I-9 compliance issues impact many areas of an organization. However, within most organizations many areas, such as IT and information security, are not aware of the I-9 compliance issues and unknowingly put the company at noncompliance jeopardy. Compliance with any law or regulation that involves personally identifiable information (PII) usually require the involvement of legal, IT and information security areas.

(more…)

Tags:, , , , , , , , , , , , , ,
Posted in Laws & Regulations | 3 Comments »

Personnel Privacy, New I-9 Forms, Removal of SSN Requirements and IT Involvement

Sunday, November 18th, 2007

Early this year I did a data flow analysis for I-9 compliance, and I blogged a few months ago about I-9 related issues in “New Tennessee Law Prohibits Using Federal Individual Taxpayer ID as Proof of Immigration Status.”
I-9 compliance issues impact many areas of an organization. However, within most organizations many areas, such as IT and information security, are not aware of the I-9 compliance issues and unknowingly put the company at noncompliance jeopardy. Compliance with any law or regulation that involves personally identifiable information (PII) usually require the involvement of legal, IT and information security areas.

(more…)

Tags:, , , , , , , , , , , , , ,
Posted in Laws & Regulations | 1 Comment »

Bill Gates Is Creating Road Hazards Across America

Saturday, November 17th, 2007

Last night on the drive into town to my 8-year-old son’s basketball practice we were on a heavily trafficked city interstate around 5:15pm…rush hour and happy hour drivers were everywhere with bumber-to-bumper vehicles across 4 lanes. I was sitting in the passenger side, and I saw a large truck in front of us. As we pulled alongside I saw “Microsoft” boldly painted on the truck cargo area.

(more…)

Tags:, , ,
Posted in Miscellaneous | 5 Comments »

A Lesson In IT Backup Media Management From Francis Ford Coppola

Friday, November 16th, 2007

As I was reading this week’s issue of Time magazine I found a backup lesson given by Francis Ford Coppola!

(more…)

Tags:, , , , , , , , , ,
Posted in Information Security | No Comments »

HIPAA: Beware Doctors Who Claim They Don’t Have To Follow Safeguard and Privacy Requirements

Thursday, November 15th, 2007

My good friend Alec recently made me aware of a very interesting blog post made by a physician (thanks Alec!) that is frankly quite troubling.

(more…)

Tags:, , , , , , , , , , ,
Posted in Information Security, Privacy and Compliance | 6 Comments »

U.S. Federal Teleworking Report Reminds Us that Teleworking Saves Time and Resources, But Must Be Done With Safeguards In Place

Wednesday, November 14th, 2007

On November 6 there was a an interesting hearing held by the U.S. Subcommittee on Federal Workforce, Postal Service, and the District of Columbia about teleworking in the federal agencies.
Considering large numbers of privacy breaches occurring within government agences involving mobile computing devices and storage devices, this caught my eye.

(more…)

Tags:, , , , , , , , , , , , ,
Posted in government, Information Security, Privacy and Compliance | No Comments »

« Older Entries
Newer Entries »