SEO Marketing Research

SEO Marketing Research header image 2

Intellectual property risks

1,246 Comments · Business outsourcing

Most businesses have a significant amount of sensitive information, including trade secrets, business plans, and proprietary business knowledge.

Safeguarding critical business information is a concern, even in the United States. Threats to information security, such as theft by company insiders, former employees, and computer hackers, abound.

Offshore outsourcing presents different and in some cases more potent threats than the domestic variety.

Legal standards and business practices governing whether and how sensitive information should be guarded vary around the world.

Some industry groups, such as banks and financial services firms, have developed stringent guidelines for organizations to follow to secure their proprietary information.

The Bank Industry Technology Secretariat (BITS), for instance, released security guidelines as an addendum to an existing framework for managing business relationships with IT service providers.

The BITS goal is to help financial services firms streamline the outsourcing evaluation process and better manage the risks of handing over control of key corporate systems to vendors.

The BITS IT Service Providers Working Group developed the BITS Framework for Managing Technology Risk for IT Service Provider Relationships (Framework) in 2001.

Although the original Framework provides an industry approach to outsourcing, additional regulatory and industry pressures and issues have emerged.

To address these changes, the Working Group updated the Framework with further considerations for disaster recovery, security audits and assessments, vendor management, and cross-border considerations.

The Framework is intended to be used as part of, and in supplement to, the financial services company’s due diligence process associated with defining, assessing, establishing, supporting, and managing a business relationship for outsourced IT services.

The U.S. Federal Trade Commission (FTC) has developed so-called Safeguard Rules to govern the security of customer information as it is used and managed by domestic firms.

These rules implement the provisions of the Gramm-Leach-Bliley Act that requires the FTC to establish standards of information security for financial institutions.

Penalties for failure to comply with FTC rules are up to $11,000 pen violation (which may be assessed daily) and exposure to lawsuits claiming any harm to customers as a result of noncompliance.

The Health Insurance Portability and Accountability Act (HIPAA) has led to a host of security risk management concerns for health care institutions that outsource processes that require electronic transmission of patient information.

Passed in 1996, HIPAA is designed to protect confidential health care information through improved security standards and federal privacy legislation.

It defines requirements for storing patient information before, during, and after electronic transmission.

It also identifies compliance guidelines for critical business tasks such as risk analysis, awareness training, audit trail, disaster recovery plans, and information access control and encryption.

There are 18 information security standards in three areas that must be met to ensure compliance with the HIPAA Security Rule. The three areas are as follows:

1. Administrative safeguards. Documented policies and procedures for day-to-day operations; managing the conduct of employees with electronic protected health information (EPHI); and managing the selection, development, and use of security controls.

2. Physical safeguards. Security measures meant to protect an organization’s electronic information systems, as well as related buildings and equipment, from natural hazards, environmental hazards, and unauthorized intrusion.

3. Technical safeguards. Security measures that specify how to use technology to protect EPHI, particularly controlling access to it.

The most effective information security risk management strategy is to adopt and comply with best practices and standards.

Tort law in the United States includes four possible means by which a firm may be found liable for information security lapses: duty, negligence, damage, and cause.

Duty refers to whether the organization has a responsibility to safeguard information. That duty is not in doubt in today’s security-conscious environment.

Negligence refers to an outright breach of the duty to safeguard information. It asks: “Is there evidence that the organization did not fulfill its duty of care?”

Damage refers to whether there is harm to someone (the plaintiff) as a result of negligence. Cause refers to the question of whether the negligence led to or was the primary cause of the damage.

To manage the information security risk, business process outsourcing (BPO) vendor organizations should adopt and be able to prove compliance with global best practices and standards.

Many firms turn to managed-security providers (MSPs) to assist them in managing this risk. Good MSPs provide valuable analysis and reporting of threat events, supplementing the efforts of in-house security personnel.

They do this by sifting through vast amounts of data with the goal of uncovering, identifying, and prioritizing security vulnerabilities that must be addressed. The best MSPs provide BPO buyers with the following:

• The ability to compare and correlate multiple monitoring points and to distinguish between false positives and actual threats

• Skilled experts on duty around the clock to assess and react to each threat in real time

• The ability to combine existing technology with expert analysis to look for anomalous behavior

• The ability to develop custom monitoring for specific networks on systems, including the development of an “attack signature” for each new vulnerability threat.

Using a third party to manage information security helps relieve the organization of information security concerns, but it does not remove liability if there is a security breach.

Liability cannot be transferred to a third party, unless the buyer invests in appropriate insurance policies.

A good source of security risk management guidelines, policies, and best practices is the SANS Institute Web site at www.sans.org.

The SANS (SysAdmin, Audit, Network, Security) Institute was established in 1989 as a cooperative research and education organization.

Tags:

1,246 Comments so far ↓

  • Corey Kluber Indians Jersey

    “The court holds that regulation 3 of the Broadcasting Regulations 2013 is valid to the extent that the minister has fixed a grant fee of $2.
    Corey Kluber Indians Jersey

  • Solar Power Companies

    Intellectual property risks | SEO Marketing Research

  • kyire 1

    Struggle of the youth is the most shining (1) : construction builder’s dream of sneakers
    kyire 1

  • Tandem Kayak

    Intellectual property risks | SEO Marketing Research

  • kyire irving shoes

    I was suggested this web site by my cousin. I’m not sure whether this post is written by him as nobody else know such detailed about my problem. You are wonderful! Thanks!
    kyire irving shoes

  • Cheap NFL Jerseys China

    Building a website that attracts enough visitors to support an affiliate business requires numerous work, conversely once a steady stream of traffic is accomplished, it becomes an outstanding source of passive income. To ensure that your efforts are high producing, you must devote yourself to working on mlm marketing for at least 12 to 15 hours each and every week. The large LCD screen enables you to view the image results in a far better way. They could determine what products to sell. Other single parents may have had personal experience with different day cares and help you make a decision.
    Cheap NFL Jerseys China [url=http://www.cheapnflchinajerseys.com/]Cheap NFL Jerseys China[/url]

  • Chong

    Good day! This post couldn’t be written any better! Reading this post reminds
    me of my old room mate! He always kept chatting about this.
    I will forward this post to him. Fairly certain he will have a good
    read. Thanks for sharing!

  • Nidia

    I was able to find good info from your articles.

  • Clifton

    I must thank you for the efforts you have put in penning this blog.
    I really hope to check out the same high-grade content by you in the future as
    well. In truth, your creative writing abilities has motivated me to get my own, personal website now ;)

  • cheap car shipping

    Way cool! Some very valid points! I appreciate you writing this article and also
    the rest of the website is also very good.

  • guitar wiring harness

    Very energetic post, I enjoyed that bit. Will there be a part 2?

  • Naati Translator Perth

    After looking over a number of the blog posts on your web page, I honestly appreciate your way of writing a blog.
    I added it to my bookmark webpage list and will be checking back soon. Please visit my website too and let me know how you feel.

  • Michele

    This is a topic that’s near to my heart…
    Take care! Where are your contact details though?

  • http://senashenko.ru

    Its not my first time to visit this website, i am browsing this
    site dailly and obtain fastidious information from here daily.

  • Można zobaczyć tutaj

    What’s Taking place i’m new to this, I stumbled upon this I have found It absolutely helpful and
    it has helped me out loads. I am hoping to give
    a contribution & help other customers like its helped me.
    Good job.

  • Jeanette

    Excellent blog you have got here.. It’s hard to find quality writing like yours nowadays.
    I really appreciate individuals like you! Take care!!

  • Maisie

    Hi there! This article could not be written any better!
    Looking at this post reminds me of my previous roommate! He always kept talking about this.
    I’ll send this information to him. Pretty sure he’ll have
    a good read. Thanks for sharing!

  • Emery

    Howdy! This article could not be written much better!
    Reading through this post reminds me of my previous roommate!
    He continually kept talking about this. I most certainly will send this information to him.
    Pretty sure he will have a very good read. I appreciate you for
    sharing!

  • Brittany

    Good information. Lucky me I discovered your site by chance (stumbleupon).
    I have book-marked it for later.

  • Muhammad

    Howdy! This post couldn’t be written much better! Looking through this article reminds me of my previous
    roommate! He constantly kept talking about this.
    I am going to forward this post to him. Fairly certain he will have a good read.

    I appreciate you for sharing!

  • Alberta

    You’re so cool! I do not think I’ve read through anything like that
    before. So nice to find somebody with a few genuine thoughts on this
    subject. Really.. thanks for starting this up.
    This web site is one thing that is needed on the web, someone with a little originality.

  • Krystyna

    It’s hard to come by educated people for this topic,
    however, you sound like you know what you’re
    talking about! Thanks

  • Edward

    There’s definately a great deal to know about this
    subject. I love all the points you have made.

  • Kendall

    Everything is very open with a clear clarification of the challenges.
    It was definitely informative. Your site is useful. Many thanks for sharing.

  • Luann

    You are so cool! I don’t believe I’ve read through anything like this before.

    So wonderful to discover someone with some unique thoughts on this
    topic. Really.. thank you for starting this up.

    This web site is one thing that is required on the internet, someone
    with some originality.

  • Nolan

    Excellent site you’ve got here.. It’s hard to find excellent writing
    like yours nowadays. I really appreciate individuals like you!

    Take care!!

  • Clark

    I’m pretty pleased to uncover this great site. I want to to thank you for ones time due
    to this fantastic read!! I definitely liked every part of it and I have you saved to fav to see new stuff in your blog.

  • Eulalia

    May I simply say what a relief to find an individual who truly knows what they are talking about on the internet.

    You actually realize how to bring an issue to light and make it important.
    More people should look at this and understand this side of your story.
    I was surprised that you are not more popular since you surely have the
    gift.

  • Bev

    This is a topic that’s close to my heart…
    Thank you! Exactly where are your contact details though?

  • Alphonso

    There’s certainly a lot to learn about this issue. I like all of the points you’ve made.

  • Bernd

    After looking at a number of the blog articles
    on your web page, I seriously like your way of blogging.
    I book-marked it to my bookmark website list and will be checking back
    in the near future. Take a look at my website as well and tell me your opinion.

  • Adrian

    Having read this I believed it was extremely enlightening.
    I appreciate you taking the time and energy to put this informative article together.
    I once again find myself spending a lot of time both
    reading and commenting. But so what, it was still worthwhile!

  • Gia

    My partner and I absolutely love your blog and find the majority of youhr post’s to
    be what precisely I’m looking for. Does one offer guest writers to write content in your case?

    I wouldn’t mind wrting a post oor elaborating onn some of the subjects you write about here.
    Again, awesome web log!

    Feeel free to surf to my web-site … treatment for bleeding gums in dogs –
    Gia,

  • wlasnosc

    You ought to take part in a contest for one of the finest
    blogs online. I am going to recommend this web site!

  • Indiana

    This page really has all of the information I needed concerning this subject and didn’t know who to
    ask.

  • Rhonda

    I’m very happy to discover this website. I need to to thank you for ones time due to this fantastic read!!
    I definitely enjoyed every part of it and i also have you
    book marked to see new stuff on your blog.

  • Debbie

    Can I just say what a comfort to uncover somebody that
    genuinely knows what they are discussing over the internet.
    You certainly understand how to bring an issue
    to light and make it important. A lot more people need to check this out and understand this
    side of your story. It’s surprising you’re not more popular because you definitely
    possess the gift.

  • Można zobaczyć w tej okolicy

    Hi there! I’m at work surfing around your blog from my new iphone 4!
    Just wanted to say I love reading your blog and look forward to all your posts!

    Keep up the fantastic work!

  • Nancee

    Hey There. I found your blog using msn. This is an extremely well written article.
    I will make sure to bookmark it and return to read more of
    your useful info. Thanks for the post. I’ll definitely comeback.

  • Erik

    Everyone loves it when people come together and share ideas.
    Great site, stick with it!

  • Odwieź

    Hi there to every one, the contents existing at this
    site are really remarkable for people knowledge, well, keep up the
    good work fellows.

  • trichozed does not work

    Hey there! I just would like to offer you a big thumbs up for your excellent information you
    have right here on this post. I am coming back to your site for mode
    soon.

    Take a look at my homepage :: trichozed does not work

  • Rasowyzłączenie szamb z betonu

    Someone necessarily lend a hand to make severely
    posts I would state. That is the very first time
    I frequented your web page and up to now?
    I amazed with the analysis you made to create this actual submit extraordinary.
    Excellent process!

  • big toe joint pain after running

    Undeniably believe that which you said. Your favorite reason appeared to be on the
    internet the easiest thing to be aware of. I say to you, I definitely get annoyed while people think
    about worries that they plainly do not know about.
    You managed to hit the nail upon the top and also defined out the whole thing without having side-effects
    , people can take a signal. Will probably be back to get more.
    Thanks

    Visit my site big toe joint pain after running

  • Zachwycającyzwiązek szamb z betonu

    I all the time emailed this website post page to all my friends, since
    if like to read it afterward my contacts will too.

  • frizzy hair tips

    Hi there! This is kind of off topic but I need some help from an established blog.

    Is it very hard to set up your own blog? I’m not very techincal
    but I can figure things out pretty quick. I’m thinking about setting up my own but I’m not sure where to
    begin. Do you have any tips or suggestions? Many thanks

    Also visit my site; frizzy hair tips

Leave a Comment