CSOONLINE.com - Compliance

CSOONLINE.com - Compliance http://www.csoonline.com/ en_US (c) Copyright 2008 CXO Media, Inc. All Rights Reserved. Fri, 08 Aug 2008 21:23:34 GMT 2008-08-08T21:23:34Z en_US (c) Copyright 2008 CXO Media, Inc. All Rights Reserved. Telecommuting Poses Security, Privacy Risks http://www.csoonline.com/article/440074/Telecommuting_Poses_Security_Privacy_Risks A new study finds that allowing employees to work from home and telecommute poses security and privacy risks that are not being addressed adequately by business or government. Wed, 30 Jul 2008 04:00:00 GMT http://www.csoonline.com/article/440074/Telecommuting_Poses_Security_Privacy_Risks 2008-07-30T04:00:00Z State Breach Disclosure Laws - Update http://www.csoonline.com/article/439940/State_Breach_Disclosure_Laws_Update Five states (and D.C.) have put data breach disclosure laws in the books in recent months. Article includes links to full text of each law. Tue, 29 Jul 2008 04:00:00 GMT Joan Goodchild http://www.csoonline.com/article/439940/State_Breach_Disclosure_Laws_Update 2008-07-29T04:00:00Z Former ISACA Head: SAS 70 Changes Coming http://www.csoonline.com/article/439428/Former_ISACA_Head_SAS_Changes_Coming Marios Damianides, a partner in Ernst & Young's technology and security risk services group and past president of ISACA's board of directors, expects changes for SAS 70 and more collaboration between security and non-security management groups. Fri, 25 Jul 2008 04:00:00 GMT Bill Brenner http://www.csoonline.com/article/439428/Former_ISACA_Head_SAS_Changes_Coming 2008-07-25T04:00:00Z Rules of Evidence - Digital Forensics Tools http://www.csoonline.com/article/374763/Rules_of_Evidence_Digital_Forensics_Tools Searching for clues? Here's how to investigate and use digital forensics and e-discovery tools. Wed, 04 Jun 2008 04:00:00 GMT Mary Brandel http://www.csoonline.com/article/374763/Rules_of_Evidence_Digital_Forensics_Tools 2008-06-04T04:00:00Z Digital Forensics Software: The Usual Suspects http://www.csoonline.com/article/374764/Digital_Forensics_Software_The_Usual_Suspects The four key players in digital forensics software: Guidance, AccessData, Paraben and Technology Pathways Wed, 04 Jun 2008 04:00:00 GMT Mary Brandel http://www.csoonline.com/article/374764/Digital_Forensics_Software_The_Usual_Suspects 2008-06-04T04:00:00Z Threat Watch | Cold Boot: Should New Attack on Encrypted Disks Change the Way Lawmakers Approach Disclosure Legislation 'Safe Harbors'? http://www.csoonline.com/article/328918/Threat_Watch_Cold_Boot_Should_New_Attack_on_Encrypted_Disks_Change_the_Way_Lawmakers_Approach_Disclosure_Legislation_Safe_Harbors_ Recent research from Princeton, McGraw Security Services illustrates how the lack of encryption specifications in legislation could put consumer data at risk. Fri, 04 Apr 2008 04:00:00 GMT Rick Cook http://www.csoonline.com/article/328918/Threat_Watch_Cold_Boot_Should_New_Attack_on_Encrypted_Disks_Change_the_Way_Lawmakers_Approach_Disclosure_Legislation_Safe_Harbors_ 2008-04-04T04:00:00Z The Complete Guide to Security Breach Disclosure http://www.csoonline.com/article/217082/The_Complete_Guide_to_Security_Breach_Disclosure Six-part set of articles takes 360-degree look at the implications of new laws that require organizations to notify people whose personal information has been compromised Fri, 29 Feb 2008 05:00:00 GMT Sarah D. Scalet http://www.csoonline.com/article/217082/The_Complete_Guide_to_Security_Breach_Disclosure 2008-02-29T05:00:00Z Interview: How to Make Guests Feel at Home (and Still Comply with PCI and Sarbanes Oxley Too) http://www.csoonline.com/article/217040/Interview_How_to_Make_Guests_Feel_at_Home_and_Still_Comply_with_PCI_and_Sarbanes_Oxley_Too_ The head of information security for the company that owns the Grand Ole Opry gives a snapshot of his road to compliance Fri, 15 Feb 2008 05:00:00 GMT Katherine Walsh http://www.csoonline.com/article/217040/Interview_How_to_Make_Guests_Feel_at_Home_and_Still_Comply_with_PCI_and_Sarbanes_Oxley_Too_ 2008-02-15T05:00:00Z CSO Disclosure Series | Data Breach Notification Laws, State By State http://www.csoonline.com/article/221322/CSO_Disclosure_Series_Data_Breach_Notification_Laws_State_By_State Five years after California's landmark SB 1386, our interactive map shows you which 38 states have passed laws requiring companies to notify consumers whose personal information has been compromised. Part of an in-depth series about disclosing security breaches. Tue, 12 Feb 2008 05:00:00 GMT Scott Berinato http://www.csoonline.com/article/221322/CSO_Disclosure_Series_Data_Breach_Notification_Laws_State_By_State 2008-02-12T05:00:00Z CSO Disclosure Series | What's Next with Disclosure Legislation? http://www.csoonline.com/article/217027/CSO_Disclosure_Series_What_s_Next_with_Disclosure_Legislation_ An interview with lawyer and breach notification expert Tanya Forsheit on why the United States still doesn’t have a federal breach notification law. Part of an in-depth series about disclosing breaches Mon, 11 Feb 2008 05:00:00 GMT Scott Berinato http://www.csoonline.com/article/217027/CSO_Disclosure_Series_What_s_Next_with_Disclosure_Legislation_ 2008-02-11T05:00:00Z CSO Disclosure Series | The Dos and Don'ts of Disclosure Letters http://www.csoonline.com/article/217018/CSO_Disclosure_Series_The_Dos_and_Don_ts_of_Disclosure_Letters One security breach, two letters, 11 lessons in the art of telling customers you screwed up. Two PR pros deconstruct the messages that Monster.com and USAJOBS were really giving to customers whose personal information had been disclosed. Part of an in-depth series about disclosing breaches. Wed, 06 Feb 2008 05:00:00 GMT Scott Berinato http://www.csoonline.com/article/217018/CSO_Disclosure_Series_The_Dos_and_Don_ts_of_Disclosure_Letters 2008-02-06T05:00:00Z CSO Disclosure Series | What California's New Medical Disclosure Law Means for the Rest of Us http://www.csoonline.com/article/217010/CSO_Disclosure_Series_What_California_s_New_Medical_Disclosure_Law_Means_for_the_Rest_of_Us New state law AB 1298, aimed at reducing instances of medical identity theft, could prompt similar legislation elsewhere, but experts are still unsure whether out-of-state companies with information about Californians must comply Mon, 04 Feb 2008 05:00:00 GMT Katherine Walsh http://www.csoonline.com/article/217010/CSO_Disclosure_Series_What_California_s_New_Medical_Disclosure_Law_Means_for_the_Rest_of_Us 2008-02-04T05:00:00Z Numbers: ITIL, COBIT and More; Who Uses What? http://www.csoonline.com/article/216935/Numbers_ITIL_COBIT_and_More_Who_Uses_What_ Adoption rates around the world for ITIL and other guidelines. From the 2007 Global Information Security Survey. Fri, 04 Jan 2008 05:00:00 GMT Derek Slater http://www.csoonline.com/article/216935/Numbers_ITIL_COBIT_and_More_Who_Uses_What_ 2008-01-04T05:00:00Z PCI: Smart or Stupid? http://www.csoonline.com/article/221343/PCI_Smart_or_Stupid_ The data security standard isn't as complex as some would have you believe Wed, 10 Oct 2007 04:00:00 GMT http://www.csoonline.com/article/221343/PCI_Smart_or_Stupid_ 2007-10-10T04:00:00Z PCI Is Security Simplicity, Not Complexity http://www.csoonline.com/article/216648/PCI_Is_Security_Simplicity_Not_Complexity The payment card industry data security standard seems to make relatively smart people instantly dim-witted as they complain about its so-called complexity. Thu, 02 Aug 2007 04:00:00 GMT http://www.csoonline.com/article/216648/PCI_Is_Security_Simplicity_Not_Complexity 2007-08-02T04:00:00Z