Sister CISA CISSP:

data security


July 22, 2009  3:09 PM

Adventures in Auditing #2



Posted by: Arian Eigen Heald
Compliance, data security, Physical Security

While doing a PCI exam not long ago, I visited a company that was very proud of it's security measures, and rightly so. They had done a lot of work to secure their environment. Sometimes it's the smallest things that we are so used to seeing that we stop "seeing" them. They become part of the...

February 19, 2009  2:47 PM

“Cloud Computing” Redux



Posted by: Arian Eigen Heald
cloud computing, data security

I know I keep harping on this "new" concept. The only "new" thing about it is the marketing around the name. It's still off-site data storage and third-party management of corporate hardware and data. It's got a prettier face than the old green-screen connection to the mainframe, but the concept...


February 17, 2009  6:44 PM

“Electronic Medical Records” or “Ready – Fire – Aim!”



Posted by: Arian Eigen Heald
Compliance, data security, HIPAA, medical identity theft, Privacy

What happens when we build a national database, with everyone's health records? Will everyone get better, less expensive healthcare? That's the impetus for funding a portion of the stimulus bill to push more health providers into the electronic age. There are three items to consider, and they...


June 23, 2008  6:17 PM

One More Acronym and I am Going to Scream



Posted by: Arian Eigen Heald
cloud computing, Cloud Security, data security, Security, Start Laughing Now, TCM (Truly Clueless Management), Tearing My Hair Out

I know I'm an IT Auditor, and we should eat acronyms for breakfast, but it seems as if the focus on "achieving compliance" has brought out the worst in us. "We're Compliant!" has become the holy grail of corporate management, and IT has jumped on the bandwagon because they can get funding for...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: