Disclaimer: The opinions of the columnists are their own and not necessarily those of their employer.

Tag Archives: Gramm-Leach-Bliley

Who’s In Charge Here? The Problem of Information Security Governance

– A long-time friend of mine recently called with surprising, and sad, news.  “I’ve been laid off due to poor profits,” he said.  “I receive eight-month’s severance.  But if, at the end of eight months, I tell my ex-employer that I’m retired, I’ll get…

Data Classification: Begin With Your Personally Identifiable Information

– Let’s face it: Data classification—despite being an information security “best practice”— is an expensive, time-consuming, labor-intensive task. For those organizations supporting thousands (or even hundreds) of applications and databases, the job of identifying all data elements and…

Proposed SEC Rules Broaden Scope of InfoSec Compliance Responsibilities

– On March 11, 2008, the United States Securities and Exchange Commission (SEC) published proposed rules intended to “set forth more specific requirements for safeguarding information and responding to information security breaches, and broaden the scope of the information covered by Regulation…