 |
 |
| Articles |
|
May 11, 2008
 Many companies understand value of good customer service, and the risks involved in mistreating a customer. They are sensitive to the fact that a customer treated badly may leave them for one of their competitors, and even worse, share their bad experience with their family and friends. Now consider the customer relations fall-out of suffering a data breach. A breach will get much wider coverage than friends and family, as it will likely be in all the media; television, print, radio and the Internet.
By Philip Alexander
|
|
|
April 10, 2008
The state of California enacted its data breach disclosure law back in July 2003. Today 38 other states have enacted their own data breach laws. While similar in many respects, security professionals need to be aware of the subtle differences and how to react in the event that a disclosure effects customer spanning multiple states.
By Philip Alexander
|
|
|
October 17, 2007
Overseas outsourcing can save money. However, that money savings comes with a price tag attached. It is critical that CIOs are aware of concerns and complexities that are involved prior to engaging in overseas outsourcing.
Philip Alexander |
|
|
September 10, 2007
Your mobile workforce is more productive than ever, but is it also a glaring security risk? Here are the basics on protecting data in transit, preparing for the dangers of lost laptops, securing CDs and thumb drives, and preventing employees from visiting unsafe sites.
By Philip Alexander
|
|
|
August 9, 2007
The Office of the Comptroller of the Currency (OCC) requires financial institutions to have a formal risk assessment program. A program needs to accurately identify where sensitive customer information is stored, who has access to the data, and how to speak to the security controls that are being utilized. The OCC also mandates that financial institutions must demonstrate that they have a mature risk assessment program that is accurate, consistent and repeatable. Accuracy is the name of the game. A saying that I like to use is that risk is a constant while the variable is how accurately it is assessed.
By Philip Alexander
|
|
|
June 17, 2007
Data privacy, certainly nobody will say that it’s not important. The danger is, like with most things, taken to an extreme it can lead to consequences that are both unintended and unfortunate. The target then needs to be how to find the balance between data privacy and responsible data sharing.
By Philip Alexander
|
|
|
June 1, 2007
All of the 39 state data-breach laws exempt encrypted data from PR-nightmare public-notice requirements, but don't let that fool you into thinking it's an easy answer to the data privacy challenge. Here's the lowdown on loopholes, caveats and options to consider when applying encryption.
By Philip Alexander
|
|
|
|
|
|
|
|
