Data privacy issues and compliance

  • March 16, 2006 16 Mar'06

    Opinion: Ignoring data breaches means ignoring risk management

    Corporate data breaches, leaks and losses have become commonplace, despite the recent onslaught of privacy compliance mandates and disclosure laws. While the consequences may not seem severe, corporations are not only losing tens of millions of ...

  • February 14, 2006 14 Feb'06

    CEOs share vision of safer cyberspace

    RSA's Art Coviello and Sun Microsystems' Scott McNealy offer suggestions for strengthening security and privacy and the public's faith in both.

  • December 26, 2005 26 Dec'05

    CSOs seek regulatory sanity in 2006

    IT security officers long for a common system to comply with laws that are similar, but often have conflicting demands. Some say a single set of federal guidelines could help, but others fear the implications.

  • December 21, 2005 21 Dec'05

    Lost and found: DHL returns missing data tape

    Two million ABN AMRO Mortgage customers breathe a sigh of relief after a backup tape had been reported missing. Still, customers are urged to check their credit activity.

  • December 01, 2005 01 Dec'05

    Be afraid of the catastrophic data breach

    Though stories on the latest data breaches seem to pass through the headlines in the blink of an eye, experts warn that the loss or exposure of customer data can have long-lasting consequences. In fact, just one such incident can bring an enterprise...

  • October 01, 2005 01 Oct'05

    The rise of 'dataflation'

    It's time to come to terms with the increased exposure of our private information.

  • September 27, 2005 27 Sep'05

    Active Directory getting critical look from regulators

    Auditors are honing in on directory services to see if companies have internal controls now mandated by law.

  • August 01, 2005 01 Aug'05

    Review: Elemental Compliance System 1.1 innovative, solid

    Information Security magazine says this tool is cool when it comes to helping enterprises meet regulatory security components.

  • February 01, 2005 01 Feb'05

    ID theft remains No. 1 worry

    For the fifth straight year, the FTC said most complaints came from identity theft victims. And that's a problem for enterprises.

  • October 08, 2004 08 Oct'04

    ISD Conference '04: Regulatory compliance in the real world

    The best way to meet "squishy" security provisions in regulations like Sarbanes-Oxley is to match appropriate controls against anticipated threats and create a defensible case to support those decisions.

  • August 16, 2004 16 Aug'04

    Privacy: Security pros should practice what they preach

    Calling privacy "a neglected area" in information security, expert Sarah Gordon says security professionals need to set an example by taking advantage of technical and policy solutions that can help mitigate risks to corporations.

  • July 22, 2004 22 Jul'04

    Identity management: Finding the balance between rights and responsibilities

    Burton Group analysts say enterprises must now find a way to share, yet secure data, in an increasingly perimeter-less world.

  • June 10, 2004 10 Jun'04

    As security breaches increase, groups struggle over disclosure

    As organizations consider the speed and extent to which they should acknowledge network break-ins, a victim and an industry expert agree those who wait too long and offer few details risk a PR backlash that can be as bad as the breach itself.

  • March 29, 2004 29 Mar'04

    Pink slips motivate policy compliance

    Public executions are necessary for ensuring security policy compliance, says Dr. John Halamka, CIO of both Boston's Beth Israel Deaconess Medical Center and Harvard Medical School.

  • March 25, 2004 25 Mar'04

    Markle task force hammers government again

    A Markle Foundation task force report suggests ways for government to get data it needs without violating individuals' privacy or civil liberties.