Call Us: 888 641 0500
01
DEC
2012

Most SMBs have no Information Security Policies

87% of Business in 2012 survey have no Acceptable Use Policies Phishing attacks are now among the top security risks for organizations. Yet, according to a recent survey of small and medium-sized businesses (SMB), a full Eighty-seven (87%) percent do not have a formal written...
11
SEP
2012

Information Classification – The Link between Security and Privacy

Most of the attention focused on information security today surrounds the public data breach. Almost daily we hear a new report about hundreds or thousands of records of personal information being improperly disclosed.  In fact, it is the loss of private data that drives most of...
30
MAY
2012

Defining Information Security Roles – Key to Governance

The proper definition and assignment of information security roles and responsibilities has always been a key principle of information security governance.  In fact, every major information security and data privacy regulation requires that the organization document roles and...
28
MAR
2012

Managing Vendor Security Risks Under HiTECH

Assessing the risk of third-party vendors has been a growing problem for compliance management.  Because of the growing number of data breaches related to third-parties, regulators have been focusing on the inherent risks of outsourcing.   Within the financial services industry,...
20
FEB
2012

EU Updates Data Protection Guidelines

The European Union recently released a set of draft recommendations for a major update to the current privacy framework that underpins Directive 95/46/EC. The changes would introduce a single set of rules on data protection, valid across the EU. The proposed changed give...
31
JAN
2012

New PolicyShield Update Addresses Operations and Change Management

New information security policy updates address key elements of operational security HOUSTON, Texas – Janurary 31, 2012 – Information Shield (www.informationshied.com) today announced the latest update of the PolicyShield Information Security Policy Subscription service....
31
JAN
2012

New PolicyShield Update Addresses Third Party Management

New PolicyShield Update Addresses Third Party Management New information security policy updates address key elements of operational security HOUSTON, Texas – Janurary 31, 2012 – Information Shield (www.informationshied.com) today announced the latest update of the...
27
DEC
2011

Password Policies Still Important in 2011

The Privacy Rights Clearinghouse recently released their review of what they call the most significant data breaches of 2011. Even if you have read about each of these incidents before, they are worth reading again in summary form.  What is perhaps most striking is how the most...
22
NOV
2011

Policy Points: Used Equipment Sold with Sensitive Data

In September 2011 a security researcher purchased some used network equipment for about $30 USD from  Ebay.    Once the equipment was delivered, the researcher found that it used to belong to the UK National Air Traffic Services (NATS) and that loads of sensitive data was still...
02
AUG
2011

The Shared Password Strikes Again!

One of the most intriguing cyber-security stories ever is the recent hack and public smearing of information security from HB Gary by hacker group Anonymous. The incident relates to the WikiLeaks scandal, and the ongoing fear that major corporations might be the next victims of...