When it comes to breach planning and response, well-intentioned organizations often go wrong. Experian Data Breach Resolution VP Michael Bruemmer tells where they fail and offers advice on how to do these important jobs right.
The Food and Drug Administration needs to do a better job of collecting information on privacy and security issues related to medical devices to catch problems before they rapidly spread, a new report concludes.
Removing provisions from the original bill to grant the federal government authority to impose standards on the mostly privately-owned critical IT infrastructure is a concession to win votes from Republicans, who oppose regulation.
RSA CISO Eddie Schwartz says he spends more time talking to other chief information security officers and IT security practitioners today than he did a decade ago, when he held the same job at Nationwide Insurance Co.
One of the final rules for Stage 2 of the HITECH Act electronic health record incentive program has moved a step closer to publication. The Office of Management and Budget is now reviewing the meaningful use rule.
Acquiring information security wares gets more complicated every day - some 1,000 vendors offer 150 categories of products - so it's unreasonable to expect even the most informed chief information security officers to know everything about them.