Becker's Hospital Review

NIH should strengthen information-security controls, OIG finds

The National Institutes of Health should strengthen the information-security controls it has in place for sharing access to sensitive data, according to a report from the HHS’ Office of Inspector ...
CSOonline

Looking for Information Security Control in a Global Business Climate

In 1891, Professor Fredrich Wieser wrote in his Theory of Value, “The idea of the importance of property only originates in scarcity. ” Applying this principle to computer and information security ...
Case Western Reserve University

Controls- Protecting Internal Use Information Systems

This procedure outlines basic controls required for all Internal Use Only information (IUO), including paper files and IT devices, systems processing, storing, or transmitting Internal Use Only.
Business Wire

HITRUST Finds Information Security Control Maturity is Key Indicator to Measuring and Predicting Cyber Risk

FRISCO, Texas--(BUSINESS WIRE)--HITRUST®, a leading data protection standards development and certification organization, today announced a new initiative to incentivize information security teams ...
Nextgov

FDIC fails to establish effective controls to secure sensitive data, report says

The agency tasked with supervising financial institutions nationwide is struggling to maintain effective information security measures, according to a new inspector general report. The Federal Deposit ...
Michigan Technological University

Information Security Roles and Responsibilities

Under federal, state, regulatory, and contractual requirements, Michigan Tech is responsible for developing and implementing a comprehensive information security program. The purpose of this document ...
Western Illinois University

Information Security Program Policy

This document establishes the policy for the Information Security Program at Western Illinois University (WIU). The formation of this policy is driven by many factors, including the need to protect ...
Government Technology

Audit Faults CDT Cybersecurity Controls, Project Oversight

The state auditor’s office says in a new report that it’s keeping the California Department of Technology (CDT) on its list of “high-risk” agencies due to concerns about state departments’ information ...
Business Wire

HITRUST i1 Assessment control selection leverages security best practices, threat intelligence

FRISCO, Texas--(BUSINESS WIRE)--HITRUST today announced it is addressing the need for a continuously-relevant cybersecurity assessment that aligns and incorporates best practices and leverages the ...
Security

Information Security Forum releases standard of good practice 2020

NEW YORK – May 6, 2020 –– The Information Security Forum (ISF) has published a major update to its Standard of Good Practice (The Standard) for IT security professionals, the industry’s most ...
DePauw

Information Security Plan

This Written Information Security Program describes the safeguards implemented by DePauw University to protect confidential data. The goal of the program is to ensure the security of these assets to ...
Forbes

Are Your And Your Vendors' Information Security Practices Backed By Experts?

A lot of the work I do, especially for clients regulated by the Department of Labor (DOL), involves third-party risk reviews. In 2021, the DOL released a list of cybersecurity best practices. Now, in ...