Nextgov

‘Continuing Significant Deficiencies’ Hamper VA’s Information Security Controls, Audit Finds

The Department of Veterans Affairs “continues to face significant challenges” in complying with the Federal Information Security Modernization Act—or FISMA—according to an audit released by the VA ...
CSOonline

Looking for Information Security Control in a Global Business Climate

In 1891, Professor Fredrich Wieser wrote in his Theory of Value, “The idea of the importance of property only originates in scarcity. ” Applying this principle to computer and information security ...
Computerworld

How to Write an Information Security Policy

An Information Security Policy is the cornerstone of an Information Security Program. It should reflect the organization’s objectives for security and the agreed upon management strategy for securing ...
Forbes

Are Your And Your Vendors' Information Security Practices Backed By Experts?

A lot of the work I do, especially for clients regulated by the Department of Labor (DOL), involves third-party risk reviews. In 2021, the DOL released a list of cybersecurity best practices. Now, in ...
CSOonline

Outsourcing/Offshoring: An Information Security Practitioner’s View

As organizations pursue cost savings and operational efficiencies with their existing business processes, they often turn to service providers either in their home countries or abroad to reap ...
Rochester Institute of Technology

C08.1 Information Security Policy

The Information Security Policy is the umbrella policy for a framework of standards that provides specific requirements around use of RIT information assets. Compliance with the standards ensures that ...