Brandeis University

Written Information Security Policy (WISP)

The objective of Brandeis University (“University”) in the development and implementation of this comprehensive written information security policy (“WISP”) is to create effective administrative, ...
Medicine Buffalo

University at Buffalo Information Security Program

The University at Buffalo Information Technology Office (UBIT)’s Information Security Program addresses the full range of information security issues that affect the university, and establishes a ...
No Jitter

How to Draft a Useful Data Security Policy

A consultant colleague recently reached out with some questions on how to craft a good organizational information security policy. I’ve got experience with this, as a graduate-level legal instructor, ...
JD Supra

What is an Information Security Framework and Why Do I Need One?

An information security framework, when done properly, will allow any security leader to more intelligently manage their organization's cyber risk. The framework consists of a number of documents that ...
IPWatchdog

Privacy and Data Security Due Diligence: Best Practices for Avoiding Bumps Down the Road

“The information gleaned from the [privacy due diligence] process may result in a change in plans as to the level of operational integration that the acquirer may ...