The agency has fallen short on nine of 10 security controls under OMB guidance, according to a new OIG report on FISMA ...

The University at Buffalo Information Technology Office (UBIT)’s Information Security Program addresses the full range of information security issues that affect the university, and establishes a ...

The purpose of this policy is to assist the organization in its efforts to fulfill its fiduciary responsibilities relating to the protection of information assets and comply with regulatory and ...

The management of information risk has become a significant topic for all organizations, small and large alike. But for the large, multi-divisional organization, it poses the additional challenge of ...

Business Continuity Office Provides guidance and assistance to process/function owners regarding the identification of processes/functions and vital records, particularly those classified as critical.

This Written Information Security Program describes the safeguards implemented by DePauw University to protect confidential data. The goal of the program is to ensure the security of these assets to ...

A lot of the work I do, especially for clients regulated by the Department of Labor (DOL), involves third-party risk reviews. In 2021, the DOL released a list of cybersecurity best practices. Now, in ...

Every organization, regardless of size or the revenue it generates, needs a security program. According to a recent International Data Corporation (IDC) report, "By 2027, the average enterprise will ...