The University at Buffalo Information Technology Office (UBIT)’s Information Security Program addresses the full range of information security issues that affect the university, and establishes a ...

Under federal, state, regulatory, and contractual requirements, Michigan Tech is responsible for developing and implementing a comprehensive information security program. The purpose of this document ...

It’s one thing to establish a security program that meets the needs of your organization. It’s quite another to successfully embed the principles of that program into the very DNA of your organization ...

The Information Security Program Maturity Model is a useful tool in understanding the degree of sophistication of information security processes, their reliability and effectiveness in identifying, ...

An Information Security Policy is the cornerstone of an Information Security Program. It should reflect the organization’s objectives for security and the agreed upon management strategy for securing ...

The Environmental Protection Agency's nine-year-old information security program, housed in the Office of Environmental Information, is staffed by 11 employees and a handful of contract support staff.

For many organizations today, information is their most valuable asset, but many don’t protect it as such. Through the work my team and I have done over the years with enterprise customers, we have ...

The purpose of this policy is to assist the organization in its efforts to fulfill its fiduciary responsibilities relating to the protection of information assets and comply with regulatory and ...

The federal government is requiring federal contractors to implement specific guidance in the form of NIST 800-171 in an effort to curb the trend of federal government data being exposed on contractor ...

September 13, 2012- (ISC)2 (“ISC-squared”), the world’s largest information security professional body and administrators of the CISSP, today announced the winners of the second annual (ISC)2 Americas ...

With what seems like a never-ending stream of cybersecurity attacks, corporate boards and executives are searching for that “silver bullet” to protect them from the universe of threats. Unfortunately, ...