Michigan Technological University

Information Security Roles and Responsibilities

Under federal, state, regulatory, and contractual requirements, Michigan Tech is responsible for developing and implementing a comprehensive information security program. The purpose of this document ...
Forbes

Are Your And Your Vendors' Information Security Practices Backed By Experts?

A lot of the work I do, especially for clients regulated by the Department of Labor (DOL), involves third-party risk reviews. In 2021, the DOL released a list of cybersecurity best practices. Now, in ...
Security

Information Security Forum releases standard of good practice 2020

NEW YORK – May 6, 2020 –– The Information Security Forum (ISF) has published a major update to its Standard of Good Practice (The Standard) for IT security professionals, the industry’s most ...
CSOonline

Looking for Information Security Control in a Global Business Climate

In 1891, Professor Fredrich Wieser wrote in his Theory of Value, “The idea of the importance of property only originates in scarcity. ” Applying this principle to computer and information security ...
CSOonline

Outsourcing/Offshoring: An Information Security Practitioner’s View

As organizations pursue cost savings and operational efficiencies with their existing business processes, they often turn to service providers either in their home countries or abroad to reap ...
Nextgov

‘Continuing Significant Deficiencies’ Hamper VA’s Information Security Controls, Audit Finds

The Department of Veterans Affairs “continues to face significant challenges” in complying with the Federal Information Security Modernization Act—or FISMA—according to an audit released by the VA ...
ZDNet

CISOs given cyber leadership role in Australia's new Information Security Manual

The Australian Signals Directorate (ASD) Essential Eight strategies for mitigating cyber attacks, and a focus on risk management, are at the core of the Australian government's latest Information ...