Privacy | Software Associates.

The Tao of GRC

Posted in: Risk management|Tags: GRC, HIPAA, PCI DSS, Privacy, Risk management, Sarbanes-Oxley|By: Danny Lieberman|November 29, 20111 Comment

I have heard of military operations that were clumsy but swift, but I have never seen one that was skillful and lasted a long time. Master Sun (Chapter 2 – Doing Battle, the Art of War). The GRC (governance, risk and compliance) market is driven by three factors: government regulation such as Sarbanes-Oxley, industry compliance …

Customer convenience or customer privacy

Posted in: Privacy|Tags: customer data protection, Privacy|By: Danny Lieberman|November 25, 2011No Comments

This is a presentation I gave at the UPU (Universal Postal Union) EPSG (Electronic Products and Services working Group) working meeting in Bern on Feb 20, 2007. About 25 people from 20 countries were present and it was a great experience for me to hear how Postal operations see themselves and what they do in …

Lies of social networking

Posted in: Information security|Tags: Facebook, Privacy, private networking, social, social media, Social Networking|By: Danny Lieberman|June 23, 2011No Comments

Is marketing age segmentation dead? My sister-in-law Ella and husband Moshe came over last night for coffee. Moshe and I sat outside on our porch, so he could smoke his cigars and we rambled over a bunch of topics, private networking, online banking and the Israeli stock market. Moshe grumbled about his stock broker not …

Medical device security trends

Posted in: Software security|Tags: Cloud computing, Cloud security, data loss prevention, HIPAA, medical devices, Pharmaceutical, Privacy, Software security, Threat modeling|By: Danny Lieberman|January 17, 201110 Comments

Hot spots for medical device software security I think that 2011 is going to be an exciting year for medical device security as the FDA gets more involved in the approval and clearance process with software-intensive medical device vendors. Considering how much data is exchanged between medical devices and customer service centers/care givers/primary clinical care teams and …

Controlled private networking

Posted in: Privacy|Tags: Facebook, Privacy|By: Danny Lieberman|October 12, 2010No Comments

This evening I was added to a FB Group – apparently – you don’t have to agree to be joined in. FB Groups is a way to organize your contacts and get better control over your social networking. It looks pretty cool to me but the New York Times suggests that Facebook groups may engender even more …

Controlled social networking

Posted in: Privacy, Risk Assessment|Tags: ethics, Privacy, social media, Social Networking|By: Danny Lieberman|June 20, 20101 Comment

I saw a post recently on Controlled social networking for student collaboration. One of the comments lamented not having the head count to install technology to control Facebook access by students. Frankly – as a data security and compliance consultant who does a lot of work with corporates in social networking (both on the application side …

What price privacy?

Posted in: Privacy|Tags: ethics, Facebook, Privacy|By: Danny Lieberman|June 16, 20101 Comment

Dr. David Gurevich in an interview with the Israeli business daily Globes predicts that real time death will be the next development in reality programming. Once the domain of science fiction and fantasy – Dr. Gurevich believes that the online death scenario is an inevitable development in the loss of privacy and wave of voyeurism …

Archives