Great little article short and too the point, nice concept the 5Ps.
http://www.business2community.com/finance/the-5-ps-of-online-shopping-risk-management-0358444
Wednesday, December 26, 2012
APRA releases draft guide on managing data risk
Being on holidays I've only had a very cursory look at the guide, but at first view I'll be giving it a full read. It has a good introduction to what is data and data security, I saw a several paragraphs that will be good to use (full referenced of course) in some of my work.
" The Australian Prudential Regulation Authority (APRA) has today released for consultation a draft prudential practice guide on managing data risk for all APRA-regulated institutions.
The draft Prudential Practice Guide 235 Managing Data Risk (PPG 235) sets out what APRA regards as sound practice in managing the main risks associated with data, which is a key asset for all APRA-regulated institutions. The use of data and its application, retention, storage and security have become highly important with increasing automation and the criticality of data to decision-making. "
http://www.apra.gov.au/CrossIndustry/Consultations/Pages/December-2012-Consultation-PPG-235-Managing-Data-Risk.aspx
" The Australian Prudential Regulation Authority (APRA) has today released for consultation a draft prudential practice guide on managing data risk for all APRA-regulated institutions.
The draft Prudential Practice Guide 235 Managing Data Risk (PPG 235) sets out what APRA regards as sound practice in managing the main risks associated with data, which is a key asset for all APRA-regulated institutions. The use of data and its application, retention, storage and security have become highly important with increasing automation and the criticality of data to decision-making. "
http://www.apra.gov.au/CrossIndustry/Consultations/Pages/December-2012-Consultation-PPG-235-Managing-Data-Risk.aspx
Monday, December 17, 2012
IS Quotes and Aust Incidents Pages Updated
Well I'm trying not to too carried away with formatting and the likes (can't help it I like pretty things). I've updated and cleaned two more pages:
- Security Quotes - Sometimes wisdom can be funny or offensive (maybe to the point is a better way to describe this, but cutting, blunt comments are needed at times when confronted with stupidity and ignorance). The quotes I'm after are along this line;
- Australian Security Incidents - This is my main focus at present and will be update the most frequently. It seems to be an ongoing battle to raise awareness to technical, business, executives that bad things happen more frequently if you don't pay attention to information security. Incidents in context of Australian seems to carry more weight in the discussions.
Friday, December 14, 2012
Unofficially Information Security
Just starting up with the aim of getting the content fixed in place for the new year.
The main purpose is to store and share some of the information that I use on a daily basis in my Security and Governance business.
The content will not be technical Security but higher level, risk management, policy, standards, privacy and the likes.
The information and sources will be focused on Australian Information Security Practitioners. (New Zealand? considering it)
You are more than welcome to contribute, all contributions will be acknowledged and linked if requested.
Have a safe holiday.
Steve...K.
Subscribe to:
Posts (Atom)