Computers Stolen in Ohio with 72,000 Medicaid Subscribers’ Personal Info

June 6, 2006

  • June 11, 2006 at 2:43 am
    George Toft says:
    Like or Dislike:
    Thumb up 0
    Thumb down 0

    It takes about 2 minutes to change the Windows local Administrator password using easily obtainable tools on the Internet. Personal data should be encrypted. Period. It\’s not that hard – there are several drive and file encryption tools available and this should be considered minimum level of due care. Unfortunately, encrypting data is not a HIPAA requirement, even though it should be.

    If you store your customer\’s information, it should be protected against theft. Both HIPAA and Gramm-Leach-Bliley Act require risk assessments to be performed by the company. Theft is a credible threat and must be addressed in the risk assessment.

    George Toft, CISSP
    Chief Security Officer
    My IT Department

  • December 20, 2006 at 7:58 am
    gihama says:
    Like or Dislike:
    Thumb up 0
    Thumb down 0

    Has anyone used for CISSP Certified Information Systems
    Security Professional to study for the CISSP exam?

Add a Comment

Your email address will not be published. Required fields are marked *