The United States Office of Management and Budget (“OMB”) recently issued a Compliance Supplement for 2019 that includes, for the first time, audit objectives for colleges and universities concerning ...

With what seems like a never-ending stream of cybersecurity attacks, corporate boards and executives are searching for that “silver bullet” to protect them from the universe of threats. Unfortunately, ...

Information Security Management (ISM) encompasses the systematic integration of governance, risk management, and operational controls to protect an organization’s information assets. At its core, ISM ...

The Army is transforming its warfighting capabilities to become a technologically agile and digitally driven force. The intent is to innovate and modernize to improve current capabilities and to ...

An information security policy is the foundation of an enterprise security program, ideally establishing in clear language what the organization expects from its security operations based on both its ...

I speak with a lot of Chief Information Security Officers on an informal basis, and what I’ve been hearing squares with my own experience as a CISO. The elevation of the top information security role ...

When some of the top CSOs and CISOs in northern California’s Silicon Valley congregated this week past week at Yahoo corporate headquarters in Sunnyvale, it was business not technology that permeated ...

The direct link between information management and business objectives has been overlooked by many, yet offers enormous potential to a brand. Information is clearly one of an organization’s most ...

To assist the Division of Information Technology in achieving its vision, Information Security MUST be considered by each and every member of the University community. So, what is Information Security ...