Social Networking Policies for Employees
Social networking is a great way to reach customers, but when a company asks their employees to engage in online communities without clear policy direction, trouble can abound. For eSecurity Planet this month, I take a look at some of the regulations and considerations organizations need to take into account when asking employees to take to Twitter, Facebook, et al. These days it seems that just...
Read MoreHow to “Green” Security Compliance
This month for eSecurity Planet, I took a look at ways to reduce, re-use and recycle in your compliance program. Green IT is getting a lot of buzz these days: partly because buzz attracts readers, but also because IT managers are being pressured to keep costs down by deploying more energy efficient data centers and fewer racks and servers. One area where you may not hear the green meme thrown...
Read MorePCI DSS Ambiguities and How to Overcome Them
In a video over at the SearchSecurity site, Ed talks about the: questions that pose the greatest challenge to enterprises as they struggle to interpret the requirements; outlines recent and upcoming clarifications from the PCI Security Standards Council; and discuss strategies used in the field to reduce the complexity. Does “one function per server” mean that we can’t use...
Read MorePCI Compliance Summit
BrightTalk is hosting a day-long PCI Compliance Summit on October 27th. Looks like they’ve put together a really solid agenda. Diana will be presenting “Software Security for Compliance, PCI, and Beyond” at 10a Eastern. Please listen in if you have time! PCI requirement 6 and sub-requirement 6.6 have caused confusion among retailers and merchants trying to understand how best...
Read MoreSOX Compliance in InfoSecMag
Neil Roiter interviewed Ed for the October issue: Larger companies have been built to have audits going on frequently. They are complex, so they have compliance programs,” says Ed Moyle, a manager with CTG’s information security solutions practice and partner at SecurityCurve. “That’s where the bigger costs come in. Smaller companies have been focused on growing revenue,...
Read MoreCompliance in the Cloud: It’s Still Your Stuff
I’ll be delivering a webinar on compliance in cloud computing environments for the BrightTalk Compliance Summit on July 7th at 3p Pacific. ...
Read MoreTuesday September 7, 2010
Diana Kelley's profile