Under federal, state, regulatory, and contractual requirements, Michigan Tech is responsible for developing and implementing a comprehensive information security program. The purpose of this document ...

It’s one thing to establish a security program that meets the needs of your organization. It’s quite another to successfully embed the principles of that program into the very DNA of your organization ...

Keeping up with the volume and velocity of information creation, use, storage, security, and disposition in any organization is a challenging proposition. Period. Partnership, with active ...

The Federal Financial Institutions Examination Council (FFIEC)—the interagency body tasked with setting uniform principals and standards for the examination of financial institutions by federal ...

The purpose of this policy is to assist the organization in its efforts to fulfill its fiduciary responsibilities relating to the protection of information assets and comply with regulatory and ...

The Environmental Protection Agency's nine-year-old information security program, housed in the Office of Environmental Information, is staffed by 11 employees and a handful of contract support staff.

The Consumer Financial Protection Bureau got to experience what it’s like to go through an examination. The Office of Inspector General (OIG) within the Federal Reserve recently released findings and ...

Critical skills are necessary to make a successful Chief Information Security Officer (CISO). It is critically important that the CISO is tightly integrated with the organization’s mission. Focusing ...

The purpose of this policy is to define required access control measures to all University systems and applications to protect the privacy, security, and confidentiality of University information ...

Auditors have once again rated the Department of Health and Human Services' information security program as "not effective," citing several areas of weaknesses, including issues related to risk ...

With what seems like a never-ending stream of cybersecurity attacks, corporate boards and executives are searching for that “silver bullet” to protect them from the universe of threats. Unfortunately, ...