Assured SPC Blog

Latest from Assured SPC Blog

  Balancing business survival, cyber risk, customer compliance, and privacy compliance Pandemic impact on Managing Risk Businesses of every size are dealing with a perfect storm created by the COVID-19 pandemic.   Prior to the pandemic, there was a growing recognition of the need to balance of business growth with risk management from cyber risk, third party compliance requirements and regulatory compliance for information security and privacy. In the Marsh-Microsoft 2019 Global Risk Perception Survey published…
New Restrictions for GDPR data in the US Disclaimer: We specialize in operationalizing data security and privacy requirements and work closely with security and privacy attorneys, but we are not attorneys. The European Court of Justice ruled yesterday that Privacy Shield is not adequate to protect EU subject (resident) sensitive data that is transferred to the US.   While commercial privacy law like the California Consumer Privacy Act or the Illinois Biometric Privacy Information Act focus…
Privacy does not have to be complicated. But board members have a fiduciary duty for their organization’s data security and privacy compliance.   Many organizations create significant financial and reputational risk for themselves through decisions on governance, cultural change and adoption of regulatory compliance requirements for consumer privacy. If the early steps of privacy compliance are done well and there is continuous focus on quality and automation, then risk and operational cost can be reduced —…
We have big problems We try to boil down big problems into small actions.   Today we see that COVID-19 cases are rising in the US.   And we know that while the US has 5% of the world’s population, we currently have 25% of the cases.   The proposed solutions in the US is to make the problem a problem of small segments of the population.   The buck doesn’t stop at the top.   For a while it…
We have big problems We try to boil down big problems into small actions.   Today we see that COVID-19 cases are rising in the US.   And we know that while the US has 5% of the world’s population, we currently have 25% of the cases.   The proposed solutions in the US is to make the problem a problem of small segments of the population.   The buck doesn’t stop at the top.   For a while it…
With Work from Home the new normal, is your Personal Information safe? Work from home is the new normal for many that have not lost their jobs related to the pandemic.   Knowledge workers are those that are most likely to be able to stay connected electronically and perform their jobs from a home office.  What is the impact of this change to protection of your personal information (PI)?   Should you be concerned? Many businesses capture…
With Work from Home the new normal, is your Personal Information safe? Work from home is the new normal for many that have not lost their jobs related to the pandemic.   Knowledge workers are those that are most likely to be able to stay connected electronically and perform their jobs from a home office.  What is the impact of this change to protection of your personal information (PI)?   Should you be concerned? Many businesses capture…
vCISO advice on work from home Step one was the crisis-driven transition to work from home.   Step two is managing the risk that was created by step one. Worldwide we transitioned to shelter in place, and much of the time this meant a transition to work from home (WFH).   This wasn’t optional.   It was part of business continuity, but it likely created new risk.   Our advice as virtual chief information security officers (vCISO) is to…
vCISO advice on work from home Step one was the crisis-driven transition to work from home.   Step two is managing the risk that was created by step one. Worldwide we transitioned to shelter in place, and much of the time this meant a transition to work from home (WFH).   This wasn’t optional.   It was part of business continuity, but it likely created new risk.   Our advice as virtual chief information security officers (vCISO) is to…
We are in a time of sudden global, national, local, work and personal change. It is natural that we are fearful of today’s news, tomorrow’s government restrictions and the future of our personal and family members’ health. Edmund Burke said “No power so effectually robs the mind of all its powers of acting and reasoning as fear.” We have choices for how we address our fear of the pandemic and its impact on our health…