Mass. 201 CMR 17: The Darkness and the Light
Some security experts say Massachusetts' new data protection law (Mass. 201 CMR 17) is among the toughest they've seen. Three IT security practitioners who must deal with the law opine on whether it's too harsh or not tough enough. (Part 3 in a series)
Why Mass. 201 CMR 17 Deadline Was Extended
Companies that live or do business in Massachusetts have a few extra months to meet compliance deadlines for the state's tough 201 CMR 17 data protection law. The simple reason: Too few understand the law to meet the original January deadline (Part 1 in a series).
Gary Hinson on ISO/IEC 27000
An IT governance specialist tells security pros about forthcoming updates to the influential ISO/IEC 27000 family of standards. (Part of the What Happens Next security predictions series.)
International Challenges in PCI Security
Bruce Larson, CSO at American Water, and others discuss the challenges of maintaining PCI DSS compliance when the company has a global reach. (Third in a series)
Application Security: The Turning Point?
Are we there yet? Editor in Chief Derek Slater wants to say yes, but an OWASP expert says no.
Industry View: Sharing the PCI Load
Kip Miles of Rackspace identifies two key PCI considerations for hosted services
PCI's Post-Audit Pain Points
Passed your first PCI compliance audit? You've only just begun! Veterans say ongoing challenges with log management, database encryption and upper management buy-in mean the task is never finished.
FUD Watch | The Boogeyman in the E-Voting Machine
There's no mix quite like Halloween, politics and government. It's a cocktail that can be heavy on the fear-mongering. Here are some examples.
A Tale of Two PCI Security Audits
Robert Duran of Time Inc. and Allan Kintigh of National Card Services share their PCI auditing experiences. Why one's experience was unpleasant and the other fared better.
PCI Application Security: Who's Guarding the Data Bank?
Ben Rothke and David Mundhenk offer compliance strategies for PCI's new application security requirements.
Security Directions: A Virtual Conference
Available On Demand Sept. 30 - Dec. 30
Join us for a virtual event with candid, expert information on top security challenges and issues - all from the comfort of your desktop.
Protecting PII: How to Work with IT to Manage Risk
Understand the critical nature of the test data privacy problem and get tips on how to work with IT to implement a test data privacy program.
- More Headlines
- Change Topic
Data Protection
- Cisco's Free IPhone App Grabs Security Feeds
- Security Pro Says New SSL Attack Can Hit Many Sites
- 3 Basic Steps to Avoid Joining a Botnet
- Security Vendor Fortinet Sparkles in IPO
- NSA Helped with Windows 7 Development
- The Mass. 201 CMR 17 Survival Guide
- 64-Bit Windows Safer, Claims Microsoft
- Firefox 3.6 Locks Out Rogue Add-Ons
- How to Hack China for Just $1,800
- The Cloud Security Survival Guide
