Michigan Technological University

Information Security Roles and Responsibilities

Under federal, state, regulatory, and contractual requirements, Michigan Tech is responsible for developing and implementing a comprehensive information security program. The purpose of this document ...
Healthcare IT News

Healthcare needs security architectures that provide control resiliency

Cyber resilience is a concept that most organizations are familiar with. It's defined as the ability to withstand and recover from adverse events that have the potential to impact an organization’s ...
Forbes

Are Your And Your Vendors' Information Security Practices Backed By Experts?

A lot of the work I do, especially for clients regulated by the Department of Labor (DOL), involves third-party risk reviews. In 2021, the DOL released a list of cybersecurity best practices. Now, in ...
Case Western Reserve University

Controls- Protecting Internal Use Information Systems

This procedure outlines basic controls required for all Internal Use Only information (IUO), including paper files and IT devices, systems processing, storing, or transmitting Internal Use Only.
Medicine Buffalo

University at Buffalo Information Security Program

The University at Buffalo Data Technology Office (UBIT)’s Information Security Program identifies and describes goals, expectations, roles, and responsibilities with respect to information security ...
Nextgov

‘Continuing Significant Deficiencies’ Hamper VA’s Information Security Controls, Audit Finds

The Department of Veterans Affairs “continues to face significant challenges” in complying with the Federal Information Security Modernization Act—or FISMA—according to an audit released by the VA ...
CSOonline

Outsourcing/Offshoring: An Information Security Practitioner’s View

As organizations pursue cost savings and operational efficiencies with their existing business processes, they often turn to service providers either in their home countries or abroad to reap ...