SEARCH RESULTS
 
Showing 1-10 of 45 records
 
Expand article

Why Don't Financial Institutions Have Vulnerability Reporting Policies Online?

2007-09-16 12:36:00 by Security Retentive in Security Retentive
 
...institutions. I tried finding disclosure policies online for major financial institutions such as Citibank, Wells Fargo, Washington Mutual, Chase, Fidelity, etc. I was unable to find a externally accessible security reporting/disclosure policy for any of the major financial institutions I looked at Why is that Fear that a disclosure policy...
 
Tags: financial institutions, online, vulnerability disclosure policy, disclosure policy, policies, vulnerability, security, security researchers, major financial institutions
 
 
 
 
Expand article

How aware are your employees on IT security and risk policies?

The Article has images
2008-01-08 18:50:00 by Ryan Shopp in practical risk management
...institutions and customers. Now with the ID Theft Red Flags, its also been pushed to the top of the compliance list. Institutions by Nov. 1 must have a written program showing how they are educating their employees and customers about identity theft American Banker Associations Doug Johnson, senior policy advisor for the largest industry...
 
Tags: employees, theft red flags, malicious insider, insider, red flags, prevent identity theft, identity theft, security, risk
 
 
 
 
Expand article

Stolen SunGard laptop affects at least 10 post-secondary schools

The Article has images
2008-04-21 14:49:39 by Evan Francen in The Breach Blog
...institutions worldwide strengthen institutional performance by improving constituent services, increasing accountability, and enhancing the education experience SunGard Higher Education has a vision to unify people, process, and technology in an environment that addresses the needs of higher education institutions and the people they serve....
 
Tags: information, personal information, store confidential information, university, university system, data custodians apply, data custodians, information security governance, sungard
 
 
 
 
Expand article

Health care practices and UCSF patient records exposed

The Article has images
2008-05-07 16:10:17 by Evan Francen in The Breach Blog
...institutions to plow the ranks of patients for fundraising purposes Hospitals and other health care providers are turning patients into "fundraising free-fire zones," said Dr. Arthur Caplan, chairman of the department of medical ethics at the University of Pennsylvania School of Medicine The breach is a symptom, but the real ethics...
 
Tags: ucsf, ucsf patient, ucsf patients, patients, patient, sensitive information, information, patient information, ucsf medical center
 
 
 
 
Expand article

The top six corporate email risks

2007-10-27 19:27:40 by Administrator in Email security & compliance blog
 
...institutions to keep a record of their email communications and secure confidentiality of information. In the new IRS regulation Circular 230, the IRS requires tax advisors to add an email disclaimer to any emails including tax advice, expressly stating that the opinion cannot be relied upon for penalty purposes. The U.S. Securities and...
 
Tags: risks, email risks, email, email disclaimer, email communications, companys email system, company network, company, explicit email
 
 
 
 
Expand article

Irongeek on Campus

2007-10-04 10:00:18 by Editor in Irongeek's Security Site
 
...institutions are using my videos in their InfoSec classes. I think this is great, but I'd like to compile a list of such campuses . If your campus uses my videos, please send me an email with the institutions name and a link to their web site. So far Jackson Community College is the only name on the list, but I know there's more to come
 
Tags: institutions, jackson community college, educational institutions, infosec classes, web site, videos, campus, list, link
 
 
 
 
Expand article

ATM Communication - How Secure ?

The Article has images
2008-03-21 12:34:00 by Random InfoSec Guy in Security Coin
...Institutions (exchange keys between two FIs out-of-band AND under the principles of dual control and then encrypt the keys, how should compromised - no - even "suspect" compromised PINs and Keys that encrypt the PINs be treated (securely delete the key, recreate a new key under the principles of dual control and split knowledge and re-encrypt...
 
Tags: pin, pin offsets, atm, pin translation, natural pin, key, key management, atm communications, encryption key
 
 
 
 
Expand article

Economic Downturn Reduces Security

2008-05-13 11:55:19 by Editor in IT Security - The IT Security Industry's Web Resource
 
...institutions In order to help restore their balance sheets, these institutions are announcing extensive expense reductions, particularly layoffs. Of course, the details of these cutbacks are not announced, so the result of this situation on their information security cannot be known. However, there are three results that are quite feasible in...
 
Tags: security, information security, include security personnel, extensive expense reductions, include security infrastructure, reductions, network security, institutions, infosec blog takes
 
 
 
 
Expand article

Whats driving the MSSP craze - critical, but non-core functions are fair game for outsourcing

2008-06-13 03:29:37 by HASH0x8bb419c in StillSecure, After All These Years
 
...institutions function. However, at the mid-size level and below, financial institutions do outsource security. I have seen several MSSPs who specialize in this vertical. Lastly, I think the real battle will be who do you get your managed security from. Do you get from a general purpose network vendor, like Verizon, ATT or IBM or HP? Do you...
 
Tags: critical, non-core, core, critical activities, non-core activities, activities, security, mssp, outsource core