December 2008 Archives

Recently I had an opportunity to attend an interesting presentation by John Mallery of BKD, LLP that was given to a group of IT industry professionals regarding how to protect trade secrets and the use of forensics to identify wrongdoing. A large part of his speech focused on eDiscovery and FRCP and how companies must understand the importance of having an eDiscovery strategy. But, the part that really struck home with me was when the presenter asked the crowd of around 60 or so participants who knew what eDiscovery and FRCP was. Stunningly, only three people, including myself, raised their hands. Now this is by no means a scientific measurement of companies and their knowledge of eDiscovery, but it was surprising to me none the less and, unfortunately, it is probably closer to reality than most of us would like to admit. (read more)

The risks inherent to the payment card industry (PCI) and the consumers using credit cards are well documented. High profile PCI data breaches such as the TJX data breach are a painful reminder of the importance of securing consumer information and the need for security standards such as the Payment Card Industry Data Security Standards (PCI-DSS). Originally created when Visa, Mastercard, Discover and American Express aligned their individual data security policies, PCI-DSS version 1.2 that was released in October 2008 provided clarification and updates to meet today's payment card security challenges. One such example is anti-virus software will be required on all systems regardless of operating system. (read more)