I've been here at the CSI SX conference for the past few days, and I've had the great opportunity and pleasure of speaking with a large number of folks while here. I was finally able to meet Ron Woerner in person (nice to meet you Ron!) after communicating with him in the Security Catalyst Community over the past 1+ year.

I love coming to these conferences and just talking with the participants. There is always at least one topic for which I receive enlightenment that I had not considered before. During the past few days I've spoken with 4 to 5 people who are responsible for information security, all from highly regulated industries, who all say despite their adequate to even generous information security and privacy budgets, some of their most important information security and privacy efforts are being quashed by their corporate communications offices; those responsible for the messages that are sent to personnel throughout the enterprise.

 
Continue reading Corporate Communications Officers Tying The Hands Of Information Security and Privacy Pros...

Digg it!

Sphere it!

Del.icio.us

Reddit!

Newsvine

Posted by Rebecca Herold | Permalink | Comments (0) | TrackBacks (0)

A few weeks ago I was at a meeting for a professional organization I belong to, giving a talk about privacy breach response, and the audience was great; around 40 in attendance, all visibly listening and interested and participating. I love to look and see everyone's faces as I am talking; seeing if they are confused, in agreement, or otherwise are reacting to the ideas and recommendations I am talking about.

I was around 20 minutes into my talk when someone's cell phone started ringing...playing a John Phillip Sousa march. LOUDLY. I kept talking, and everyone was still listening...trying to listen...but the darn phone kept playing! People then started looking around...and finally I stopped and said, "Does someone need to get that?" One of the folks then reached down and answered it; and then left the room. Quite an unnecessary interruption.

 
Continue reading Going Topless...I Like It!...

Digg it!

Sphere it!

Del.icio.us

Reddit!

Newsvine

Posted by Rebecca Herold | Permalink | Comments (2) | TrackBacks (0)

For the past several years I have written often, and given much training, to demonstrate and emphasize the need for information security and privacy areas to collaborate in their efforts. There are just too many topic overlaps between the two areas to NOT work together cooperatively.

Effectively addressing and coordinating Privacy and Information Security initiatives has moved to the top of the list for companies maintaining customer and employee information. However, there are often gaps in communication and collaboration between Privacy and Information Security activities.

 
Continue reading Information Security and Privacy Areas MUST Collaborate For Their Initiatives To Be Effective...

Digg it!

Sphere it!

Del.icio.us

Reddit!

Newsvine

Posted by Rebecca Herold | Permalink | Comments (0) | TrackBacks (0)

The first article within the March issue of my new e-journal, "IT Compliance in Realtime" is "Twelve Messaging Risks to Address Now."

Here are a few excerpts...

 
Continue reading Twelve Messaging Risks to Address Now...

Digg it!

Sphere it!

Del.icio.us

Reddit!

Newsvine

Posted by Rebecca Herold | Permalink | Comments (0) | TrackBacks (0)

Here's another event related to compliance, information security and privacy to put on your calendar...

This is National Consumer Protection Week (NCPW) in the U.S.

 
Continue reading Did You Know This Was National Consumer Protection Week?...

Digg it!

Sphere it!

Del.icio.us

Reddit!

Newsvine

Posted by Rebecca Herold | Permalink | Comments (0) | TrackBacks (0)

I participate in the LinkedIn community, and I was intrigued this morning to find a question posted by Bill Gates (yes Microsoft Bill)!

"How can we do more to encourage young people to pursue careers in science and technology?"

 
Continue reading Promoting Science and Technology...

Digg it!

Sphere it!

Del.icio.us

Reddit!

Newsvine

Posted by Rebecca Herold | Permalink | Comments (0) | TrackBacks (0)

There's a great information security and privacy awareness event coming up, Internet Safety Night on April 23, 2008, 6:30-8:30 p.m.

 
Continue reading Great Information Security and Awareness Event Coming In April...

Digg it!

Sphere it!

Del.icio.us

Reddit!

Newsvine

Posted by Rebecca Herold | Permalink | Comments (0) | TrackBacks (0)

Here's an interesting juxtaposition of hacker-related news articles...

When scanning today's news I saw the headline, "Teen Is World's Youngest 'Ethical Hacker'"

 
Continue reading Two Types Of Young Hackers...

Digg it!

Sphere it!

Del.icio.us

Reddit!

Newsvine

Posted by Rebecca Herold | Permalink | Comments (0) | TrackBacks (0)

Here's a good article for all information security and privacy pros to read and show their business leaders. If nothing else show them the last paragraph:

 
Continue reading More Info Security & Privacy Education Will Reduce The Numbers Of Incidents...

Digg it!

Sphere it!

Del.icio.us

Reddit!

Newsvine

Posted by Rebecca Herold | Permalink | Comments (0) | TrackBacks (0)

I got a nice message from Brian Honan yesterday letting me know that February 12 is "Safer Internet Day," or SID for short; (Thanks Brian!)

 
Continue reading Did You Know February 12 is "Safer Internet Day"?...

Digg it!

Sphere it!

Del.icio.us

Reddit!

Newsvine

Posted by Rebecca Herold | Permalink | Comments (0) | TrackBacks (0)