Demanding that users not write down their passwords is a quarterly opportunity to send the message that security policy is a useless bureaucratic exercise.
Category: Cloud IT Governance risk management security Tags: passwords, policy
Archives for December, 2011
The Peril of Parallel Passwords
by Jay Heiser | December 23, 2011 | 2 Comments
All employees must obey the law!
by Jay Heiser | December 14, 2011 | Comments Off
Even worse is a policy statement such as “all employees must obey all applicable laws.” What reasonable person would disagree with that requirement? For a start, I would.
Comments Off
Category: IT Governance risk management security Tags: law, policy, security
Is a cloud safer than a mattress?
by Jay Heiser | December 1, 2011 | 1 Comment
Its been suggested more than once that avoiding public cloud computing is tantamount to keeping your money in a mattress. Given what’s happened over the last 4 years, why would anyone automatically assume that the use of banks represents a low level of risk?
Category: Cloud risk management security Tags: backups, disaster recovery
