Tag Archives: SB 1386

Data Classification: Begin With Your Personally Identifiable Information

– Let’s face it: Data classification—despite being an information security “best practice”— is an expensive, time-consuming, labor-intensive task. For those organizations supporting thousands (or even hundreds) of applications and databases, the job of identifying all data elements and…

Proposed SEC Rules Broaden Scope of InfoSec Compliance Responsibilities

– On March 11, 2008, the United States Securities and Exchange Commission (SEC) published proposed rules intended to “set forth more specific requirements for safeguarding information and responding to information security breaches, and broaden the scope of the information covered by Regulation…