After a bit of a breather last week as I spent some much needed time with my wife, kids, and friends, it's time to get back to sharing my thoughts related to security and compliance.
Brian Tretick, executive director, Privacy Risk Advisory Services at Ernst & Young shared eight important areas related to privacy that IT should focus on in an article on CIO.com.
Brian's points are:
- Keep Data Classification Up To Date
- Minimize the Use of Personal Information
- Determine the Appropriate Use of Encryption
- Set Strict Standards for Vendors and Business Partners
- Protect Remote Use of Personal Information
- Have an Incident Response Plan for a Worst-Case Scenario
- Develop Privacy Procedures for both Home and Abroad
- Keep Pace with Privacy Management Technology
Brian does a great job expanding on each of these points, so, rather than repeat him, let me encourage you to read the article in its entirety. Making sure you're addressing these eight areas is a good way towards a more secure 2008.
Contributed by Mark Tordoff
Comments