Category Archives: Duty of Care Risk Assessment (DoCRA)

Defining reasonable security – THE QUESTIONS A JUDGE WILL ASK YOU AFTER A DATA BREACH presented by Chris Cronin. Establishing duty of care with DoCRA. CyberNext 2019 in DC.

ISACA North America 2019 Next Gen Risk Assessment – a discussion of the new Duty of Care Risk Assessment methodology (DoCRA) also known as the Center for Internet Security Risk Assessment Method (CIS RAM). Discuss what sets this method apart and why it is an important business tool.

The Cyber Security Summit began with a speaker from the Department of Justice, and it ended with a speaker from the FBI – presenting on risks and reasonable protocol. (more…)

HALOCK Security Labs led the Cyber Security forum for the South Carolina Primary Health Care Association (SCPHCA). Managing consultants, Tod Ferran, CISSP, QSA, ISO 27001 Lead Auditor, and Glenn A. Stout, Ph.D., CISSP, CISM, GSEC, PMP presented on hot topics. (more…)

As we have outlined in prior articles, states such as California, Colorado, and New York are actively implementing regulations that will enforce compliance regulations concerning the management of personal information with reasonable security.  Like cybersecurity itself, legislation is a dynamic process and states continue to tweak and add amendments to the existing laws. (more…)

The 2019 EXPO.health conference is focused on 5 main topic areas which are of interest to health IT professionals at hospitals, health systems, and ambulatory organizations (more…)

(more…)

The California Consumer Privacy Act (CCPA) and more states are shaping data privacy management for reasonable security.