Access "Nick Mankovich: Maintaining health care privacy and security"
This article is part of the October 2010 issue of Security 7 Award winners and the latest on effective security awareness
I confess I used to run away from all professional discussions about privacy. I found them murky and contentious: a bit like religion or politics but peopled with lawyers, legislators, and lobbyists! Still, from my comfort zone of managing security controls I wrestled with the notion of privacy, which seemed to be something inside of confidentiality that kept squeezing out through the cracks to be much, much more. Worlds collide when a researcher says, "Well, it's my data about these patients, so I can give you access." My turning point was purchasing an out-of-print copy of Alan Westin's 1967 book Privacy and Freedom. This prescient, insightful work provided a context for these difficult conversations and prompted me to adopt the following definition: "Privacy is the right of the individual to control information about him or herself." When feeling devilish, I'll throw in "perceived right" just to dangle the red cape and begin a lively discussion among colleagues from different countries. Beyond giving me a chance to reflect on one of the big questions ... Access >>>
Access TechTarget
Premium Content for Free.
What's Inside
Features
-
-
Nick Mankovich: Maintaining health care privacy and security
by Nick Mankovich
In the world of health care, the more we value privacy, the harder we work to protect it.
-
Information Security magazine Security 7 Award winners
Information Security magazine annouces the winners of its fifth annual Security 7 Awards.
-
Learn about database security auditing tools
by Adrian Lane, Contributor
Database administrators are overcoming their distaste for database auditing tools; compliance and security are turning the tide.
-
Brian Engle: An effective information security program requires ongoing monitoring
by Brian Engle
A successful information security program uses ongoing oversight and monitoring to manage risks.
-
Christopher Ipsen: Government transformation through technological innovation
by Christopher Ipsen
The economic crisis gives government entities the opportunity to change for the better.
-
Nick Mankovich: Maintaining health care privacy and security
by Nick Mankovich
-
-
How to build an effective information security awareness program
by Lance Spitzner
The "people problem" continues to hamper information security efforts; what can be done about it?
-
Ezzie Schaff: Fighting online fraud requires delicate balance
by Ezzie Schaff
Countermeasures for thwarting Internet fraudsters must be balanced with customer service.
-
Blanca Guerrero: Online banking security is a balancing act
by Blanca Guerrero
Online banking security requires providing users with choices in order to minimize risk without becoming intrusive.
-
Julie Myers: Implementing an information security strategy in a decentralized environment
by Julie Myers
Implementing data security in a decentralized organization requires a collaborative approach.
-
Information security market consolidation
Flurry of acquisitions in information security industry expected to continue through 2011.
-
How to build an effective information security awareness program
by Lance Spitzner
-
Columns
-
Information security risk tolerance
by Susan L.T. Neubauer
Has regulatory and other guidance missed the most important aspect of information security?
-
A career in information security is often best served by staying put
by Lee Kushner and Mike Murray
Sometimes the best job is the one you have; it's the best place to build skills and develop new ones.
-
Information security professionals offer insight
This year's Security 7 winners offer advice for tackling enterprise security challenges.
-
Information security risk tolerance
by Susan L.T. Neubauer
More Premium Content Accessible For Free
Compliance and risk modeling
E-Zine
You can fight compliance or embrace it, but one way or the other, you can’t escape it. Increasingly, smart organizations are not just accepting ...
Essentials: Threat detection
E-Zine
Antivirus and intrusion prevention aren’t the threat detection stalwarts they used to be. With mobile endpoints and new attack dynamics, enterprises ...
Managing identities in hybrid worlds
E-Zine
The world in which successful IAM programs must be implemented is increasingly complex, a mix of legacy on-premise IAM infrastructures, cloud-based ...