espellman Archive
ISO 27001 is the international standard that describes best practice for an ISMS (information security management system). Achieving accredited certification to ISO 27001 demonstrates that your organization is following information security best practice, and delivers an independent, expert assessment of whether …
What is culture? The Oxford English Dictionary says it is: The ideas, customs, and social behaviour of a particular people or society In any organization or group of individuals there are learned and shared patterns of behaviour or shared values which give us the culture of …
Information security management remains a serious issue for the legal sector, with law firms reporting an increase in targeted attacks in 2018. Large volumes of client funds and confidential information are irresistible to cyber criminals, so it is unsurprising that …
In mid-March, NBC reported that IBM collected nearly one million photos from photo hosting site Flickr to use as data sets to help develop facial recognition algorithms. Although IBM claims the data set is designed to help academic researchers make …
Completing a risk assessment is often the most challenging and difficult aspect of an ISO 27001 project. Regardless of the tools you use, the risk assessment must take into account many elements, such as assets, threats, vulnerabilities, and controls, and …
In addition to health issues, UConn Health patients are now fretting over their PII (personally identifiable information) being compromised. On December 24, 2018, UConn Health discovered that an unauthorized party had accessed nearly 1,500 employee email accounts. Breach at UConn …
North Country Business Products, Inc. (North Country) announced a data security incident on February 15, 2019, alerting customers who paid by card at its restaurants that their PII (personally identifiable information) may have been compromised. More than 50 of its …
North Carolina-based Duke Energy has been fined a record $10 million by NERC (North American Electric Reliability Corporation) for 127 violations of rules designed to keep the U.S. power system safe from physical and cyber attacks. According to NERC’s penalty …
AdventHealth Medical Group recently informed about 42,000 patients that a data security incident at its Pulmonary & Sleep Medicine facility in Tavares, Florida may have exposed their confidential information. In late December 2018, AdventHealth discovered that an unauthorized third party …
While Fred Flintstone’s car was driven by his feet, many of today’s cars are computer controlled. Your auto’s computer offers much greater connectivity than Fred’s feet: it contains your private information. According to the National Highway Traffic Safety Administration, “The same way …