/blog en BradKeller@idexpertscorp.com Copyright 2013 2013-06-19T16:09:08+00:00 http://www2.idexpertscorp.com/blog/single/mobile-devices-what-to-do-if-your-vendors-implement-byod/ http://www2.idexpertscorp.com/blog/single/mobile-devices-what-to-do-if-your-vendors-implement-byod/#When:16:09:08Z Driven by employee demand and the perception of better efficiency, the use of mobile devices in the workplace continues to grow. So, not only must today's IT security managers determine how to manage these devices in their own environment, they must also determine if their third party service providers' are allowing employees to access their data and/or systems through the use of a mobile device as well. This is particularly important if your vendors' follow the Bring Your Own Device "BYOD" approach to mobile device implementation. 2013-06-19T16:09:08+00:00 http://www2.idexpertscorp.com/blog/single/things-you-should-know-before-going-live-with-a-complete-data-breach-respon/ http://www2.idexpertscorp.com/blog/single/things-you-should-know-before-going-live-with-a-complete-data-breach-respon/#When:17:28:25Z So you find yourself in the debacle of a data breach? Where in the world do you begin? Your management team is sending you emails left and right, meetings have started to run amok, and you haven’t had lunch in the last two days. 2013-06-14T17:28:25+00:00 http://www2.idexpertscorp.com/blog/single/what-i-learned-at-the-id-360-event-in-austin/ http://www2.idexpertscorp.com/blog/single/what-i-learned-at-the-id-360-event-in-austin/#When:16:19:59Z I spent a week at The Center for Identity’s ID360 event in Austin, TX last month. What an amazing event this proves to be year after year! 2013-06-13T16:19:59+00:00 http://www2.idexpertscorp.com/blog/single/analyzing-the-us-hipaa-legacy-and-future-changes-on-the-horizon/ http://www2.idexpertscorp.com/blog/single/analyzing-the-us-hipaa-legacy-and-future-changes-on-the-horizon/#When:16:00:22Z The US Department of Health and Human Services issued the long-awaited final omnibus rule under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) on January 17th,2013.  This ruling set a federal level baseline for US healthcare privacy. 2013-06-10T16:00:22+00:00 http://www2.idexpertscorp.com/blog/single/are-you-a-hipaa-business-associate-it-isnt-as-simple-a-question-as-it-sound/ http://www2.idexpertscorp.com/blog/single/are-you-a-hipaa-business-associate-it-isnt-as-simple-a-question-as-it-sound/#When:19:52:01Z As we enter summer this year, it is just a short few months to September 23, 2013. And so what is special about that date? That is when HIPAA business associates, those organizations that work with healthcare providers, health plans, and others who are exposed to sensitive patient data (protected health information, or PHI), are required to comply with new privacy, security and breach notification rules from the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR).  Known as the HIPAA Omnibus Final Rule. 2013-06-05T19:52:01+00:00 http://www2.idexpertscorp.com/blog/single/how-to-manage-employee-based-data-breaches/ http://www2.idexpertscorp.com/blog/single/how-to-manage-employee-based-data-breaches/#When:14:00:34Z Employee perceptions and satisfaction will be swayed during a breach, whether it is a security break-in or a system hacking. Employees fear not only for their personal information and job security, but now their trust in the company has also been altered. 2013-06-04T14:00:34+00:00 http://www2.idexpertscorp.com/blog/single/harm-standard-gone-but-not-forgotten-new-factors-mimic-current-breach-regs/ http://www2.idexpertscorp.com/blog/single/harm-standard-gone-but-not-forgotten-new-factors-mimic-current-breach-regs/#When:19:59:28Z Although covered entities (CEs) have been required since 2009 to notify affected individuals and the gov­ernment, when appropriate, of breaches of unsecured protected health information (PHI), the so-called “harm” standard that triggers notice no longer exists under the new final regulations. Or does it? 2013-06-03T19:59:28+00:00 http://www2.idexpertscorp.com/blog/single/cyber-risk-privacy-liability-forum-2013/ http://www2.idexpertscorp.com/blog/single/cyber-risk-privacy-liability-forum-2013/#When:16:55:15Z Well it’s that time of year again when all the key players of the cyber liability insurance world arrive in Philadelphia.  Net Diligence works closely with HB Litigation conferences to get more than 300 attendees to the Cyber Risk & Privacy Liability Forum on June 6-7 which is sure to be another great event.   2013-05-29T16:55:15+00:00 http://www2.idexpertscorp.com/blog/single/hhs-sensible-compromise-on-the-controversial-harm-threshold-part-2/ http://www2.idexpertscorp.com/blog/single/hhs-sensible-compromise-on-the-controversial-harm-threshold-part-2/#When:16:14:25Z In part 1 of my analysis of the HIPAA final breach notification rule I focused on the implications for covered entities and business associates of the change to the definition of “breach.” The revised definition removed the controversial “risk of harm” language and instituted an incident specific risk assessment requirement. According to HHS, the harm threshold was giving covered entities too much flexibility to apply their own perception of whether the incident could harm the affected patients.  The focus of this Part 2 analysis is on the practical choices facing covered entities to comply with the newly minted “compromise” standard and the associated risk four factors. 2013-05-28T16:14:25+00:00 http://www2.idexpertscorp.com/blog/single/big-data-increases-breach-risk/ http://www2.idexpertscorp.com/blog/single/big-data-increases-breach-risk/#When:18:29:39Z Our existence as a consumer society has led us to our current big data reality.  Everything about us is compiled, categorized, sorted, analyzed, often with our permission, though the knowledge of what we’re doing has largely been hidden in the fine print, if shared at all.  In exchange for dense digital dossiers of our lives, we often get a coupon or an offer, matched just for us, from the logs maintained about our lives.  And this is just the mild form of big data’s usage. 2013-05-20T18:29:39+00:00