eGov Initiative Not Without Risk to Citizen Data
November 19, 2009
The eGovernment movement is a good thing, and maybe too long in coming given how many years businesses have been taking advantage of technology to provide convenience and a higher quality of service to their customers. Constituent services have been available online for years, certainly, but only recently has the effort to modernize government been policy. Yet the push to digitalize federal agencies is not all photo ops and campaign sound bites. There’s risk involved, and unless ...more
Posted by Dr. Larry Ponemon at 7:36 am
Permalink
Add Comment
(
0 Comments)
RSA Keynote Address by PGP CEO Phil Dunkelberger
March 23, 2010
Phil Dunkelberger RSA Keynote - Abridged “Those that cannot remember the past are doomed to repeat it.” -George Santayana The history of the information technology sector is one of constant transformation and reinvention. Whether it’s hardware platforms migrating from mainframes to mini-computers, to personal computers to smart phones or proprietary application interfaces being recreated for web browsers, the IT sector has distinguished itself by its rate of innovation and the ability to transition from one ...more
Posted by Dr. Larry Ponemon at 12:03 pm
Permalink
Add Comment
(
0 Comments)
Information Security and a Leaky Roof
March 29, 2010
Here on the East Coast we’ve been treated to a mild but very wet spring and it reminds me of a story my dad told me when I was a young boy. During a late spring deluge an old and less than industrious farmer complained to his neighbor that he was exhausted after spending the night running throughout his house placing pans, pails, buckets and anything else that would hold water underneath the many ...more
Posted by Mike Spinney at 8:05 pm
Permalink
Add Comment
(
0 Comments)
Security in the Trenches
April 14, 2010
We just completed a survey of federal IT security professionals to examine the data protection posture of government agencies. Through the survey, sponsored by CA, we wanted to see whether or not there is consistency in the perception of rank-and-file employees and executive management as it pertains to the safeguarding of sensitive information, regulatory compliance, and the day-to-day management and execution of a security program. What we found was interesting, and in keeping with what ...more
Posted by Dr. Larry Ponemon at 10:23 am
Permalink
Add Comment
(
1 Comments)
The Road to Data Breach is Paved with Good Intentions
April 19, 2010
We recently completed some new research with Accenture in which we were surprised to find that, in spite of all the attention being paid to data protection, and in spite of new and updated data protection regulations, complacency is beginning to settle in among many companies. Yes, I said complacency. Oh, don’t get me wrong: most organizations have good intentions with regard to data protection, but we all know where the road paved ...more
Posted by Dr. Larry Ponemon at 12:25 pm
Permalink
Add Comment
(
3 Comments)
Think Before you Cloud
May 13, 2010
A few years ago, when wireless networking was still relatively new, there were numerous reports of enterprising employees who, frustrated with the pace of new technology integration in their workplace, took it upon themselves to deploy rogue access points – often hidden behind furniture or above drop-down ceiling panels – in order to provide convenient mobility around the office. Problem was these clandestine devices, while providing a benefit to the user, were not industrial ...more
Posted by Dr. Larry Ponemon at 9:02 am
Permalink
Add Comment
(
1 Comments)
Cold War and a Hot Furnace
June 9, 2010
I was a U.S. Navy intelligence specialist assigned to VA-55 (go Warhorses!), a bomber squadron based at NAS Oceana in Virginia Beach, Virginia. In my position I handled a great deal of classified information and also had responsibility for the destruction of that information. Ashore, I took bags of discarded documents to the base intelligence center and tossed the paper into Igor, a massive pulverizing machine that rendered into a fine powder whatever slid down its chute. ...more
Posted by Mike Spinney at 10:44 am
Permalink
Add Comment
(
0 Comments)
Benchmarking Information Security Efficiency
July 1, 2010
Recently the Ponemon Institute completed a new project, the Security Efficiency Benchmark Study, the purpose of which was to learn what IT security leaders in the UK and European think are the key components to having an efficient and effective security operation. In other words, we wanted to know what is necessary for achieving data security goals and protect information assets and infrastructure. As more and more organizations appoint chief information security officers and increase investments ...more
Posted by Dr. Larry Ponemon at 4:07 pm
Permalink
Add Comment
(
0 Comments)
Integrated, Holistic Security Strategies
July 12, 2010
Holistic is a popular word these days. Often applied to food and medicine, the word conjures images of natural, healthy living, but the word holistic refers to the function of an entity as a whole, including the interdependence of all its parts. Given this broader meaning, holistic can (and should) be applied when thinking strategically about the way a business organization operates. Successful, well-functioning organizations most adapt to change, be flexible in their relationships, and innovative in their ...more
Posted by Dr. Larry Ponemon at 8:30 am
Permalink
Add Comment
(
0 Comments)
RSS Feed
