RiskIT Logo

Issue 47                                             Friday, October 28, 2011 

 

How to Plan Security and Meet Your Compliance

 

Crayons and Firewalls - How to Plan  Your Security and Meet Your Compliance

 

I'm going in a different direction with this blog. I'm going to suggest a general approach to securing an Information System (IS) that can help you meet your compliance responsibilities.

 

In fact, I'm hoping that if you follow this approach, you'll actually start to appreciate some of your compliance requirements.

 

 

To read this article in its entirety, please click:

How to Plan Security and Meet Your Compliance

Medical Device Hack: A Turning Point?

 

McAfee Hack Demonstration Coulc Create a Sense of Urgency

 

News this week about an "ethical hack" of a Medtronic insulin pump, which has a wireless transmitter, could prove to be a catalyst for ramping up efforts to protect the security of medical devices.

 

Security software company McAfee has exposed a vulnerability in one model of the Medttonic Paradigm insulin pump and believes there could be similar risks in other models, according to a report from Reuters news service.

 

  

To read this article in its entirety, please click:

Medical Device Hack: A Turning Point

 

 

Defense Cyber Chief: The Cloud is the Military's Next Internet

 

Military networks and software must be tied to the cloud to defend Defense Department computers against adversaries, the Pentagon's cyber chief said Wednesday night.

 

Currently, Devense data reside on three main systems that cannot be centrally secured, creating disparate levels of protection that serve as entryways for ever evolving malicious software, according to military officials.

 

  

To read this article in its entirety, please click:  

Defense Cyber Chief: The Cloud is the Military's Next Internet

    

Emerging Companies Can Delay SOX Compliance

 

Small companies now able to opt-out of SOX regulations

New companies with a market capitalization under USD 1 billion will now be able to opt-out of regulations within section 404 of the Sarbanes-Oxley (SOX) Act for the first ten years after going public. This option was previously available for companies under USD 75 million.

To read this article in its entirety, please click: 

 Emerging Companies Can Delay SOX Compliance

 

How FERPA Compares to HIPAA
 

An overview of the Family Educational Rights and Privacy Act (FERPA) and how it compares to HIPAA

 

Outside of the Payment Card Industry Security Standards (PCI=DSS) another big regulatory requirement that is on many security, complaince, and privacy professional's minds is the Health Insurance Portability and Accountability Act (HIPAA).

  

To read this article in its entirety, please click:

 

 
RiskIT Logo 
is an email publication provided by

 

Eminere Group Logo 

 

Disaster Recovery Journal

 

 

 

ISACA Logo

 

 

 

 HIMSS Logo

 

 

More Useful Links...
  
  
  
  
  
  
  
  
  
Join Our Mailing List