"Managing risk is one of the most, if not the most important, functions in an organization," says Tony Martin-Vegue, enterprise security management strategist for LendingClub, a peer-to-peer lending ...

Data security risk assessments are a requirement for all organizations covered under the Health Insurance Portability and Accountability Act, as well as those working to achieve meaningful use ...

Many organizations suffer "security paralysis," a condition in which it is impossible to prioritize areas for remediation due to limited resources. Others attempt to apply a set of best practices in ...

This article appeared in Cybersecurity Law & Strategy, an ALM publication for privacy and security professionals, Chief Information Security Officers, Chief Information Officers, Chief Technology ...

Identify hazards. Assess risks. Implement risk control according to the hierarchy of risk control methods. The first Informational Note following this says the risk assessment procedure could identify ...

Businesses must convince customers their personal data is safe. Run a cybersecurity risk assessment to protect company and customer data.

In addition to meeting 14 core objectives and five menu set objectives, eligible hospitals have to attest to completing a risk assessment to achieve meaningful use. Furthermore, a proper risk ...

Forbes contributors publish independent expert analyses and insights. I write about laws that affect the tech industry. According to every compliance authority I've read---and I've read a dizzying ...

We have released the inaugural BakerHostetler Data Security Incident Response Report, which provides insights generated from the review of more than 200 incidents that our attorneys advised on in 2014 ...

The Five Simple Steps involve implementing new tools and systems that prioritize safety while enhancing efficiency and ...