by Jay Heiser | February 18, 2011 | 1 Comment
I do a lot of policy review for Gartner clients, and I see many of the same counterproductive practices over and over again. Requirements to ‘do what is appropriate’ or ‘obey the law’ are tantamount to saying “we won’t tell you specifically what to do, but if you don’t do it, we will punish you.” [...]
Category: IT Governance risk management security Tags: policy
by Jay Heiser | February 10, 2011 | 2 Comments
“What would be the social/economic/national/global impact of an incident that affected all the customers of a major provider?”
Category: Cloud risk management security Strategic Planning Tags: Cloud, cloud disaster, cloud regulation, cloud security, critical infrastructure, disaster recovery, national security, public policy, security
by Jay Heiser | February 9, 2011 | 1 Comment
I’ve lost a string of pocket knives over my lifetime, some of them very nice, but I’ve got no idea who, if anybody, is finding them. I did find a pocket knife once, but it was a cheap Swiss Army knockoff, and I didn’t keep it. My turnover ratio is barely -6. Dogs are not [...]
Category: IT Governance security Tags: data leakage, encryption, laptops, policy
by Jay Heiser | February 2, 2011 | 1 Comment
Flickr account holder Mirco Wilhelm was shocked to learn that Flickr had accidentally deleted his account, and apparently lacks the ability to restore his 4000 photographs to their site. This was of course not his primary storage area for 5 years of photographic effort. His account only contained lower resolution copies of work that he [...]
Category: risk management security Uncategorized Tags: continuity, disaster recovery
