Information security officers are a must
I was talking with a client last week about a perceived gap in their organization. Despite having to address multiple regulations cutting across several oversight bodies, they were lacking a single...
View ArticleManaging today’s privacy threats and security risks
A few months back, the big blinking light in the middle of the information security radar was a story about how someone had harvested all sorts of personal information from Facebook accounts and made...
View ArticleYou can’t have partial regulatory compliance
I recently decided to establish an automatic link between my personal checking account and a mutual fund account that was established for my son years ago when he was a baby. The account was...
View ArticleAre self-assessments the right way to go?
About a decade ago a family member chastised me for having an auto repair shop do my oil changes for me. She (yeah, you’re reading that right – “she”) pointed out how ridiculously easy it was to drain...
View ArticleSecurity Standards: What’s in a name?
I had an interesting phone call recently with someone in a CISO-type position. They were looking for a consultant to help them keep a seat warm working with information security risk assessments and...
View Article