Three Reasons Your Organization Needs an Up-to-Date Security Policy
by Carol Woodbury
Co-founder, President & CTO, SkyView Partners, Inc.
I just returned from COMMON and because of the discussions in one of my sessions as well as during a roundtable in which I participated, it became apparent to me that some organizations have an up-to-date security policy, but many organizations either have no security policy or haven't updated it in years. This newsletter discusses three reasons for needing an up-to-date security policy.
Reason #1
If your organization has no policy, it's quite likely that, if your organization falls under any law or regulation to protect data - that you're out of compliance with that law or regulation. How can I say that? Well, one reason is that many of them require a security policy. Another reason is because your policy is where your organization's data classification is defined. Part of that definition states how the data should be secured, its encryption requirements, retention period and so on. Without that definition, data - even PII (Personally Identifiable Information) - is probably not secured in a way that complies with the laws and regulations under which it falls.
To see my Reason 2 & Reason 3, go to ...
|
|
Coffee with Carol: Top 10 Security and Compliance Considerations for Cloud Computing
Whether you are using a cloud-based application or moving your whole infrastructure to the cloud, you should consider how this move effects your organization's security and compliance requirements. In this Coffee with Carol session, Carol Woodbury will discuss the top 10 considerations you should make as well as how to ensure that your organization's security and compliance requirements are not compromised.
|
|
SPECIAL RECORDED WEBINARS
|
|
Top 10 New Features of IBM i Security
In this Coffee with Carol session, the latest IBM i Security features are discussed. Several enhancements were provided in V6R1 and V7R1. In addition, several important enhancements have been added in the Technology Releases since V7R1. Join Carol Woodbury as she describes these recent enhancements.
5 Steps for Implementing Role-based Access on the IBM i
One of the ways to simplify the administration and management of users' capabilities and access rights is to implement role-based access (RBAC). This technique is often preferred by auditors because it provides a more simple way to review users' configuration and access.
In this session, security expert Carol Woodbury will explain RBAC, the 5 steps you can take to achieve RBAC, as well as how to use SkyView's Policy Minder product to simplify the setup and daily management of RBAC configuration and policies. |
