Here's a great article from the Wall Street Journal that was forwarded over to me by Nicholas Heesters:
Health-Care Industry: Heal Thyself
Safeguarding patient information is especially important. And especially difficult.
By M. ERIC JOHNSON
http://online.wsj.com/article/SB10001424053111904716604576542380296355702.html?mod=googlenews_wsj
Tuesday, September 27, 2011
Tuesday, September 20, 2011
NIST 800-30 Changes
For those of you in the information security field, here's an interesting notification that I received from NIST regarding changes to the NIST 800-30 guidance document. If you've conducted risk assessments for any federal systems or followed NIST guidance in health care, banking, or other industries, you may certainly be familiar with this one. One of the biggest changes is the separation of risk management (NIST 800-39) and risk assessments (NIST 800-30 Rev 1) into different guidance documents.
NIST 800-30 Revision 1 is accepting public comments from September 19, 2011 - November 4, 2011.
Nathan Gibson
--------------------------
September 19, 2011:
NIST Computer Security Division is proud to announce the release of:Initial Public Draft (IPD) of Special Publication 800-30, Revision 1, Guide for Conducting Risk Assessments
Here are 2 links to where you can read the full announcement of this draft publication release along with a link to the PDF file on the CSRC website:
Draft Publications Page: http://csrc.nist.gov/publications/PubsDrafts.html#SP-800-30-Rev.%201
CSRC News Page: http://csrc.nist.gov/news_events/index.html#sept19
----------To update your user profile click the Subscriber Preferences Page - link below. You can have your email address removed from this topic, or you can add other topics that we currently offer - those can be seen and chosen in user preferences. If you wish to unsubscribe from all topics, you can do so within your user profile. Any questions regarding our list, send email directly to Pat O'Reilly (address below). For technical issues regarding GovDelivery, contact their support team (address below). NOTE - do NOT reply back to this email for I will not receive it.
Thank you.
Pat O'ReillyComputer Security DivisionNISTpatrick.oreilly@nist.gov
Update your subscriptions, modify your password or e-mail address, or stop subscriptions at any time on your Subscriber Preferences Page. You will need to use your e-mail address to log in. If you have questions or problems with the subscription service, please contact support@govdelivery.com. All other inquiries can be directed to webmaster-csrc@nist.gov.
This service is provided to you at no charge by the National Institute of Standards and Technology (NIST).
This email was sent to ngibson using GovDelivery, on behalf of: NIST Computer Security Resource Center · 100 Bureau Drive · Gaithersburg, MD 20899 · (301) 975-6478
NIST 800-30 Revision 1 is accepting public comments from September 19, 2011 - November 4, 2011.
Nathan Gibson
--------------------------
September 19, 2011:
NIST Computer Security Division is proud to announce the release of:Initial Public Draft (IPD) of Special Publication 800-30, Revision 1, Guide for Conducting Risk Assessments
Here are 2 links to where you can read the full announcement of this draft publication release along with a link to the PDF file on the CSRC website:
Draft Publications Page: http://csrc.nist.gov/publications/PubsDrafts.html#SP-800-30-Rev.%201
CSRC News Page: http://csrc.nist.gov/news_events/index.html#sept19
----------To update your user profile click the Subscriber Preferences Page - link below. You can have your email address removed from this topic, or you can add other topics that we currently offer - those can be seen and chosen in user preferences. If you wish to unsubscribe from all topics, you can do so within your user profile. Any questions regarding our list, send email directly to Pat O'Reilly (address below). For technical issues regarding GovDelivery, contact their support team (address below). NOTE - do NOT reply back to this email for I will not receive it.
Thank you.
Pat O'ReillyComputer Security DivisionNISTpatrick.oreilly@nist.gov
Update your subscriptions, modify your password or e-mail address, or stop subscriptions at any time on your Subscriber Preferences Page. You will need to use your e-mail address to log in. If you have questions or problems with the subscription service, please contact support@govdelivery.com. All other inquiries can be directed to webmaster-csrc@nist.gov.
This service is provided to you at no charge by the National Institute of Standards and Technology (NIST).
This email was sent to ngibson using GovDelivery, on behalf of: NIST Computer Security Resource Center · 100 Bureau Drive · Gaithersburg, MD 20899 · (301) 975-6478
Subscribe to:
Posts (Atom)