Getting inspectors general and agencies' IT security heads to agree on how best to evaluate information security should strengthen U.S. federal government agencies' risk management frameworks, say former OMB leaders Karen Evans and Franklin Reeder.
Complying with the HIPAA Omnibus Rule requires a task force approach, says John Pritchard, information security manager at St. Charles Health System. Find out why Pritchard believes the rule eliminates ambiguities.
American Express confirms it was hit this week by a distributed-denial-of-service attack. The hacktivist group that has targeted banks in recent months claims credit for this latest high-profile attack.
Attacks against Facebook, Twitter and other organizations over the past few months should send a message to business owners that they need to better fund cybersecurity, IT security expert Mischel Kwon says.
The new Aurora Research Institute is taking multiple steps to protect the privacy of patients who participate in medical research, clinical trials and personalized medicine endeavors, says institute leader Randall Lambrecht.
Computer networks in nations where the government has ratified international cyber-agreements have lower incidents of malware infection, says Paul Nicholas, Microsoft senior director of global security strategy and diplomacy.
In this week's breach roundup, read about three healthcare incidents, including the theft of two unencrypted laptops that contained patient data and paper records scheduled for shredding that went missing.
The Department of Veterans Affairs is weighing legal issues before accommodating BYOD as it prepares to ramp up use of mobile devices. Meanwhile, it's inching forward with the rollout of a mobile device management system.