Feature

Protect What's Precious

Ezine

This article can also be found in the Premium Editorial Download "Information Security magazine: What's your biggest information security concern?."

Download it now to read this article plus other related content.

Chad Bartosh, IT director at North Dakota Credit Union League--a statewide association of credit unions--says the small firm has limited resources and is working to identify a vendor that will help it meet Federal Financial Institutions Examination Council (FFIEC) rules and other regulations.

"We're trying to get everything done through one shop so we don't have to work with multiple vendors," he says.

While businesses wrestle with regulations like Sarbanes-Oxley, the Edmonton Police Service has other rules it must follow. "We're

    Requires Free Membership to View

in the same boat, really," Clissold says.

In order to access federal police systems, the service must use two-factor authentication and has deployed RSA SecurID to meet that requirement. Also, the service must meet the standards of the Commission on Accreditation for Law Enforcement Agencies.

Some regulations, such as HIPAA, aren't particularly challenging because they're just common sense, says Andy Sutton, network services manager at Texas Health Resources, a nonprofit healthcare system with about 25,000 users.

"Most of [the requirements] are things that a good organization would be doing any way, such as protection of information and preventing unauthorized access to information," he says.

Moreover, vendors are building in accommodations for HIPAA requirements for authorized access to patient information and logging access to that data, he says.

This was first published in December 2006

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: