Managing Controlled Unclassified Information (CUI) – Part Two of a Three Part Series

In my first blog on Controlled Unclassified Information (CUI), I discussed ways in which your organization could get started with the Defense Federal Acquisition Regulation Supplements (DFARS) compliance activities around CUI and the deadline of December 31, 2017.  Hopefully, everyone reading this part two of the three-part series has created the policies required to identify, […]

End-of-Year Security Assessment Checklist

  We are closing in on another completed circle around the sun. A journey that has produced, yet again, more newsworthy data breaches that eclipsed those of yesteryear. Common headline, different time. Although these breaches are raising organizational and consumer awareness, we still commonly encounter two familiar end-of-year themes: Your organization is scrambling to execute […]

Building an Information Security Program: Which comes first the chicken or the egg?

If the chicken is security and the egg is compliance, which comes first?  If you think about it based on the answers to these next questions you might answer Security.  What do I need to keep my organizational assets safe? – Security  Do I need a framework to know my organization’s assets are safe? – […]

John Ford – IT Nation 2017 Featured Speaker

Transforming your MSP into an MSSP You have a trusted and lengthy relationship with your customers, but now want to expand your business to include the opportunities within the IT Security arena. How do you communicate this without customers feeling you’ve been leaving something off the table in your current offerings? This session will provide […]

Getting Started with Controlled Unclassified Information (CUI) – Part 1 of a 3 Part Series

CUI appears to be the new buzzword for the end of 2017, especially for companies who are struggling with compliance to the Defense Federal Acquisition Regulations (DFARs) requirements and NIST SP800-171.  All is not lost, nor is it difficult to get started at this late date.  Over the next month, I will discuss CUI a […]

Valuation of Trade Secrets

    September 20 2017 In a series of articles devoted to trade secrets, Gowling WLG professionals share their knowledge to help you understand and manage trade secrets to use them as tools for competitiveness. This is the third of four articles that will make up the preamble for our upcoming conference on October 24. We […]

Data Classification…it just makes sense – One girl’s not so technical opinion

Data Classification As a layperson in a world of information security professionals, it’s sometimes a bit daunting keeping up from a technical perspective. Throughout my career, I’ve tried to arm myself with enough technical knowledge to engage in a discussion, however knew that inevitably, I’d have to bring in the “big guns” when I started […]

New York Regulators – Take Aim at Cybersecurity Expectations: What You Need to Know

The New York Department for Financial Services’ (NYDFS) Cybersecurity Regulations (23 NYCRR 500) recently came into force and represent a new code of conduct, impacting all firms operating in the financial services industry within the State of New York, and is designed to protect the data of customers in the financial services sector. The new […]

Texas Supreme Court Raises the Bar for Trade Secrets Damages–Again

By Zach Wolfe in Damages, Texas Litigation, Trade Secret Litigation July 10, 2017 Horizon v. Acadia finds expert’s assumptions too speculative to support lost profits verdict Mamas, don’t let your babies grow up to be damages experts in Texas. That’s the refrain CPAs may feel like singing after the Texas Supreme Court recently raised the bar for proving lost […]