There is a lot of hype and confusion about cloud computing, what it is, and what it isn’t. Here are some resources I use, and ones I recommend for understanding the fundamentals of cloud computing and cloud security
For some – working from home is a requirement not a benefit
For many employees working from home is a perk. Their employer allows them to work from home 1-3 days a week reducing their commuting costs and removing the hassle of going into the office five days a week
Massachusetts’ MA 201 CMR 17.00
Massachusetts' MA 201 CMR 17.00 data protection regulations go into effect on Monday, March 1, and that is a huge step forward for the protection of personal information. Breach disclosure laws are old news, but 201 CMR 17.00 is different, it prescribes data protection specifics, and it is not limited to those in Massachusetts: “201 CMR 17.01 (2) Scope The provisions of this regulation apply to all persons that own or license personal information about a resident of the Commonwealth.” Yes, all persons (which includes companies and organizations), regardless of where they are located, are covered if they: “Owns or licenses, receives stores, maintains, processes, or otherwise has access to personal information in connection with the provision of goods or services or in connection with employment.” This is a big deal, for two key reasons. First, it is leading the way in state regulation of the protection of data
Why we need hackers
In the US the term “hacker” carries a negative connotation. It conjures an image of a dark room filled with computers and a lone man attempting to break into bank or credit card networks to steal as much personal information as they can
Beginning the compliance process
There are some first steps which will help you deal with any compliance initiative, things to do before starting the actual work of aligning your practices and policies with the requirements you must meet. They seem simple, but are often overlooked. First, read the regulation
PCI, Compliance, and Security
Some people seem to be confused about compliance- some hate it, a few like it, and some really like to argue about it, especially when it comes to PCI-DSS.