Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: The VA Stolen Laptop - Lessons Learned

from [qxlr] Network Security [Permanent Link]
Subject: RE: The VA Stolen Laptop - Lessons Learned
Date: Thu, 14 Sep 2006 05:36:11 -0400 
At least with hardware and digital media, there is some attempt by the 
Feds to secure data. Social Security Administration offers employees 
the ability to work from home 1 day a week, and has done so for the 
past 8 years. Security is NON-EXISTENT. 
These employees do not transport social security files in digital 
format but, rather the HARD-COPY version. The tasks performed at home 
work are the same as those performed in the office, and consist of 
everything from simple "logging and filing of mail" to writing 
correspondence, preparation of Exhibit Lists in Social Security 
Appeals cases and entering medical information into the record. The 
only security requirement: the employee must obtain (at their own 
expense) a locking 2 drawer file cabinet. No independent verification 
is ever done to see if the solitary requirement is met. Any individual 
who is now in contact with SSA, or has in the past 6 years had reason 
for correspondence/contact with any District or Hearing Office in any 
Region, (other than typical employer payroll deductions) is at risk. 
Realize, these are clerical staff - GS 8 is about the highest grade 
most clerks ever attain. Factor in a 4+ year Grade increase and new 
hire freeze, rapid depletion of the existing experienced work-force 
thru retirement and use of temporary, part-time contract staff as a 
stop gap measure, and the failures that lead to the VA incident pale 
by in comparison.


---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence 
in Information Security. Our program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Using interactive e-Learning technology, you can earn this esteemed degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Different terms for the same or more secure?, David Gillett
Next by Date:  Re: Anti Spyware Standards, andy cuff
Previous by Thread:  Re: The VA Stolen Laptop - Lessons Learned, MandommGmail
Next by Thread:  Re: RE: The VA Stolen Laptop - Lessons Learned, krymson
Indexes:  [Date] [Thread] [Top] [All Lists]