seminar: Convergence of Information Security, Privacy & Compliance
 |
Monday, February 23, 2009 |
 |
CyLab Business Risks Forum: Convergence of Information Security, Privacy & Compliance |
 |
|
 |
12:00pm |
Talk Abstract
Privacy and information security breaches have increasingly made headlines around the world for several years. The many high-profile cases have demonstrated just how serious the financial, legal, and reputational consequences can be for the organizations concerned. More complex regulation coupled with heightened awareness of the associated risks have increasingly made privacy a legal compliance issue, rather than simply good business practice. This has raised questions about whether privacy officers need to be attorneys, about the role of information security officers, about the most effective reporting structures and where privacy and information security as occupations are headed. Rapidly emerging issues like records management - driven especially by e-discovery, business continuity/recovery, and secure disposal of records - mean that privacy is now spanning a number of apparently convergent fields, such as law, information security, and compliance. How privacy, compliance and information security roles are evolving, how and why convergence is occurring, and how organizations should ensure collaboration between the areas will be discussed.
Speaker Bio
Rebecca Herold, CIPP, CISSP, CISM, CISA, FLMI, is an information privacy, security and compliance consultant, author and instructor who has provided assistance, advice, services, tools and products to organizations in a wide range of industries during the past two decades. Rebecca was named one of the “Best Privacy Advisers” in two of three categories by Computerworld magazine in 2007 and 2008. In 2008 Rebecca’s blog was named one of the “Top 50 Internet Security Blogs” by the Daily Netizen.
Rebecca was also named one of the "Top 59 Influencers in IT Security" for 2007 by IT Security magazine. The information security program Rebecca created for Principal Financial Group, where she worked for 12 years, received the 1998 CSI Information Security Program of the Year Award.
Rebecca assists organizations of all sizes and industries throughout the world with their information privacy, security and regulatory compliance programs, content development, and strategy development and implementation through a large variety of tools and services. She offers a range of standard and customized one and two-day workshops including one addressing how individuals across disciplines can work together to most effectively assure privacy and regulatory compliance while efficiently implementing security controls.
Rebecca is working on her 12th book, writes multiple monthly columns, creates the quarterly “Protecting Information” multi-media information security and privacy awareness subscription news source, with “The Privacy Professor’s Security Search #1” innovative and effective training event, in addition to providing effective information security and privacy online training courses. She also serves as an Adjunct Professor for the Norwich University Master of Science in Information Assurance (MSIA) program.
http://www.privacyguidance.com/ | http://www.realtime-itcompliance.com