While much attention is paid to cyber attacks, the root of many data breaches is actually internal. Bloomberg Law just released a survey identifying vendors and insiders as the biggest risks to corporate data security. The survey revealed that vendors and insiders are rated the most poorly among employer performance, showing that corporations are failing to manage the risks of vendors and insiders.
The Government Accountability Office (GAO) just released a report indicating that weaknesses in security programs persist across many federal agencies. The Federal Information Security Report found persistent weaknesses at all 24 federal agencies examined. These weaknesses were consistent with the findings in 2013, showing very little improvement in data protection, which is worrying given the increase in risks year-by-year.
The Securities and Exchange Commission (SEC) recently announced the settlement of charges with investment advisor R.T. Jones for failing to adopt cybersecurity policies and procedures prior to its data breach. This is the SEC’s first cybersecurity enforcement action related to the failure to protect client data and clearly states the SEC’s focus on preparedness.
Technology is rapidly changing the classroom environment and the wider education system, at all levels of education. Higher education institutions were early adopters of many instructional technologies, to the benefit of both staff and students, but the constant innovation in technology has left higher education institutions in a […]
Will you be attending Gartner Symposium/ITxpo next week in Orlando? This exciting event brings together CIOs and other senior IT professionals each year to make community connections and gain insights into new IT strategies, trends and tools.
People now expect to be able to work whenever and wherever we are. This is, in part, due to a demographic shift within the workplace. Millennials, adults now aged 18-34, are the single largest generation in the workforce. Millennials, as the first generation of Digital Natives, have different expectations when it comes to work. Data shows that 87% of Millennials have their smartphone with them day and night, and this blurring of “work” and “personal” time has a huge impact on data security.
BYOD has proven challenging for many organizations, with up to 20% of current BYOD programs set to fail within 2 years. BYOD programs often fail because security standards are set too strictly, so employees are not following them. While at face value BYOD seems to offer employees freedom and choice, its implementation has often been either unmonitored or over-monitored. It’s a difficult balance for IT, and one made more difficult by the variety of devices and operating systems presented under a purely BYOD scenario.
The Securities and Exchange Commission (SEC) has been making cybersecurity a priority in 2015. In February, the SEC released observations of its first round of cybersecurity examinations of broker-dealers and advisors, which assessed cybersecurity preparedness. The SEC has just announced its second round of examinations, which promises to focus on the assessment of how well procedures and controls have been implemented. The second round of examinations will focus on: