http://www.rolandschorr.com/blogs/index.php?blog=3&disp=comments en-US http://backend.userland.com/rss 60 Wed, 07 Jul 2010 13:40:17 +0000 Janice Taylor-Gaines [Visitor] c22605@http://www.rolandschorr.com/blogs/ This is a GREAT article despite the dismay of breaches. In David Scott’s words, everyone needs to be a mini-Security Officer today. I think Mr. Scott, the author, is right: Most individuals and organizations enjoy Security largely as a matter of luck. For some free insight (and free is good!), check out his blog, “The Business-Technology Weave” – you can Google to it, or search on the site IT Knowledge Exchange which hosts it. Anyone else here reading I.T. WARS? It reflects much of what is said here. I had to read parts of this book as part of my employee orientation at a new job. The book talks about a whole new culture as being necessary – an eCulture – for a true understanding of security, being that most identity/data breaches are due to simple human errors. It has great chapters on security, as well as risk, content management, project management, acceptable use, various plans and policies, and so on. Just Google IT WARS – check out a couple links down and read the interview with the author David Scott at Boston’s Business Forum. (Full title is I.T. WARS: Managing the Business-Technology Weave in the New Millennium). “In the realm of risk, unmanaged possibilities become probabilities.” Keep “security” front and center! Great stuff. http://www.rolandschorr.com/blogs/index.php/university-of-hawaii-data-breach?blog=3#c22605 Wed, 07 Jul 2010 12:02:54 +0000 CH [Visitor] c22604@http://www.rolandschorr.com/blogs/ Years ago, driver's license numbers in Hawaii were people's SSNs. So, I assume that's why they were on file. What I don't understand is why these numbers weren't deleted back when the state started issuing separate driver's license numbers. There was absolutely no reason to keep them. I graduated from UH almost a decade ago, why did they need to keep my info on file? I'm so livid about this. I got their stupid letter in the mail, no apologies or anything. I think there should be a class action lawsuit filed against them due to their obvious disregard for their student and staff's sensitive information. Unbelievable. http://www.rolandschorr.com/blogs/index.php/university-of-hawaii-data-breach?blog=3#c22604