Headlines about data breaches seem to hit us nonstop. The March 2019 hack of Capital One’s databases exposed the personal information of over 100 million people. Capital One says its stolen data probably wasn’t used by the hacker or disseminated to anyone else, but even if that’s true, data breaches are all too common. Equifax [...]
In today’s hyperconnected environment, many different stakeholders expect assurance regarding your information security practices. Increasingly, major companies are expecting their business partners to achieve certification against the HITRUST Common Security Framework (CSF). This robust risk management framework builds on many established security and data privacy standards, such as the ISO 27000 series, HIPAA, PCI Data [...]
You may already know that the biggest data security risk for businesses of all sizes is employee negligence. People fall for simple phishing scams and leave their work phones unlocked, and we’ve all seen that file named “passwords.txt” right on someone’s desktop. Data security training is crucial, and it can go a long way toward [...]
As of May 1, 2019, Alabama became the latest state to sign into law heightened standards within the insurance industry for cybersecurity and data privacy. The new Law implements an exhaustive set of requirements for data security pertaining to entities or individuals licensed through the Department of Insurance. Both persons and institutions have one year—until [...]
They say that when you fail to plan, you plan to fail. Most business owners know that a business plan is an indispensable component of a successful company. But there is another crucial plan that many business owners forget to create: a business continuity plan. What Is a Business Continuity Plan? A business continuity plan [...]
