* [Please post your job openings here] *

May 25, 2006

Data Security: An Oxymoron

Richard Kuper
The Kuper Report
http://TheKuperReport.com

On May 9th I gave a presentation on Data Security at the NYC Software Process Improvement Network (NYC SPIN) annual Ten Minute Madness Event. In my presentation titled: "Data Security: An Oxymoron?" I highlighted news that had come out over the prior several weeks:

-Laptops stolen with unsecured data from financial firms

-CDs distributed with private data by, in this case, the Republican
Party

-University systems getting hacked

-State and local governments posting private data on the internet

-A breach allowing Retail Credit Card holder information to be accessed

-Unauthorized access to data by insiders

-The Federal Government hiring a firm that allowed criminals to set up
fake ids and access private data to guard the security of data for the
government

-A company not validating the practices of the firm they hired to
securely scrub data from recycled hard drives and finding the
unscrubbed hard drives on ebay

In the past week, there has been news about a stolen laptop that contained names, addresses, social security numbers and more on over 26 million veterans and news about a Red Cross employee having improper access to sensitive data such as social security numbers of over 1 million blood donors.

In my presentation, I pointed out that if all of the government agencies, colleges, retail stores, major corporations, and others had good

-Policies,

-Processes,

-Procedures,

-Standards, and

-Best Practices

(and enforced them), then perhaps much of this could have been avoided.



* [Please post your job openings here] *

ThisIsMyStore.com

FindJobsPostJobs.com CareerHotList.com
R.L. Kuper, Inc. - Management Consulting

May 01, 2006

More Bad News About Data Security

Richard Kuper
The Kuper Report
http://TheKuperReport.com

Here are links to two new stories about Data Security issues:

Aetna says laptop stolen with data on 38,000 members
The Data included names, addresses, Social Security numbers

Ohio recalls voter registration CDs
Social Security numbers included

Data security is a continuing problem. Companies and the Government don't seem to have a good handle on this. At least one of the many causes of this is lack of defined and enforced policies, processes, and procedures for protecting the data. So far, no laws that have been passed seem to have had any impact on this problem. But no law should be needed. Businesses and Governments should be protecting data as part of standard practices.

As a gentle reminder to our readers, R.L. KUPER, Inc. provides Process, Procedures, Standards, Best Practices, and related Management Consulting Services.



* [Please post your job openings here] *

ThisIsMyStore.com

FindJobsPostJobs.com CareerHotList.com
R.L. Kuper, Inc. - Management Consulting
























































































This page is powered by Blogger. Isn't yours?







Who links to me?