Disclaimer: The opinions of the columnists are their own and not necessarily those of their employer.

Tag Archives: HIPAA

The New Identity Theft Red Flags Rule: Does it Raise “Red Flags” for Information Security?

October 21, 2008 – 10:20 pm – On May 10, 2006, President Bush signed an Executive Order creating the nation’s “first ever” Identity Theft Task Force.  The purpose of this ad hoc committee, chaired jointly by the Attorney General and by the Chair of the Federal Trade Commission (FTC), was “to help law…
By Sam Dekay | Posted in Compliance and Laws | Also tagged , , , , , , , | Comments (0)

Crossing the Metrics Rubicon: Quest for the Perfect Measurement

July 18, 2008 – 6:00 am – Security metrics represent a great untamed wilderness for organizations trying to determine both their risk profile and the effectiveness of the resources they have allocated to their security program. When I first became a security person after a career managing customer service, finance, and…
By Patrick Foley | Posted in Technical | Also tagged , , | Comments (0)

Data Classification: Begin With Your Personally Identifiable Information

June 3, 2008 – 6:00 am – Let’s face it: Data classification—despite being an information security “best practice”— is an expensive, time-consuming, labor-intensive task. For those organizations supporting thousands (or even hundreds) of applications and databases, the job of identifying all data elements and…
By Sam Dekay | Posted in Compliance and Laws | Also tagged , , , , , , , , , | Comments (0)