Governance & Risk Management Archives - Page 21 of 27 - HALOCK

Incident Response Hotline: 800-925-0559

Vendor Risk Management Hype Extends Beyond Target®

(more…)

Cindy Kaplan2024-10-14T02:38:46+00:00Tags: hacking, NIST, Risk Assessment, security, Target, third party risk management, third party vendor management, TPRM, vendor risk management|

Universities Remain a Rich Target for Hackers

Purple University Credit <a href=

Cindy Kaplan2024-07-03T20:42:46+00:00Tags: breaches, Hackers, intellectual property, personal information, PII, W-2|

Darrell Issa Just Learned the Difference Between Compliance and Security. Let’s Hope for a Payoff.

Darrell Issa’s House Committee on Oversight and Government Reform has been (more…)

Cindy Kaplan2024-08-01T18:56:59+00:00Tags: ATO, CISO, Committee on oversight, Darrell Issa, department of health, government reform, Healthcare.com, human services, ISO27000, Issa, NIST, PCI, PII|

A Word about the Target Data Security Breach

What happened to Target^® last week is (more…)

Cindy Kaplan2024-07-03T20:42:47+00:00Tags: Antivirus, cardholder, data breach, Hackers, security awareness, security breach, Target|

California’s New “Do Not Track” Privacy Law is Weak … As Expected

Cindy Kaplan2024-06-28T19:18:57+00:00Tags: CalOPPA, Personally Identifiable Information, PII, Privacy, Privacy law|

Common Hazards in Risk Management: The Selfish Risk Assessment

Information security laws and regulations are telling us to conduct cyber (more…)

Cindy Kaplan2024-07-03T19:22:46+00:00Tags: Breach, identity Theft, Information Security, ISO 27005, NIST SP 800-30, Risk Assessment, risk management|

The NSA’s Threat to Information Security Culture

Over the past few weeks we’ve seen news coming out of the Edward (more…)

Cindy Kaplan2024-06-28T19:21:15+00:00Tags: Information Security, ISO, NSA, Snowden|

Your Policies Can Hurt You, Part 2: Overzealous Policies Can Create Breach-Prone Environments

Early on in my information security career I was auditing a firm that (more…)

Cindy Kaplan2024-06-28T19:22:04+00:00Tags: Audit, Governance & Compliance, Information Security, Personally Identifiable Information, PII, Policies|

Your Policies Can Hurt You, Part 1: The Importance of Well-Tailored Instructions

GRC compliance

Cindy Kaplan2024-06-28T19:33:12+00:00Tags: Audit, Compliance, governance, liabilities, Risk Assessment, risk management, security policies|

Why are Hackers Heckling the Director of the NSA?

The Hackers Heckling. The Black Hat convention is under (more…)

Cindy Kaplan2024-06-28T19:33:39+00:00Tags: General Alexander, Hackers, Information Security, InfoSec, NSA|

Previous 202122 Next