With information freely available about anyone on the Internet, ISACA's Robert Stroud says security professionals need to better monitor and control how personal information is being accessed and used.
In a speech revealing new limits on the way intelligence agencies collect telephone metadata, President Obama also announced a comprehensive review of how government and business are confronting the challenges inherent in big data.
The healthcare industry must delicately balance the need to keep medical devices secure with the need to protect patient safety, says Michael McNeil, global security and privacy leader at Medtronic, a device manufacturer.
The Department of Health and Human Services has issued a proposal that aims to remove legal barriers under the HIPAA Privacy Rule that may prevent state agencies from reporting mental health information used for gun background checks.
Buried deep within a 308-page report from a presidential panel on ways to tighten federal surveillance and IT security programs are important recommendations on how to mitigate the insider threat at federal agencies.
A preliminary version of the cybersecurity framework takes a too-broad approach to privacy, says security and privacy attorney Harriet Pearson. And that could result in fewer organizations adopting the voluntary security guidelines.
Whether reports that the National Security Agency entered into a secret contract with security provider RSA are true or not - and RSA says they're not - the reputations of all American security vendors have been tarnished.
President Obama defends the National Security Agency's bulk-collection initiative, but suggests he may adopt some of the recommendations presented by a panel that proposes changes in the NSA's surveillance program.
Karen DeSalvo, M.D., health commissioner of New Orleans, will be the next national coordinator for health IT. What privacy and security issues will she face as leader of the office that crafts guidelines for the HITECH Act's EHR incentive program?