12/18/2008 - Violating standard accounting practices is insufficient to invoke whistleblower protection under the Sarbanes-Oxley Act, a federal appeals court ruled. The plaintiff in the case was fired after complaining about unorthodox accounting practices at his company.
11/25/2008 - A law (P.L. 110-233) expands the prohibition against genetic discrimination by group health plans and health insurance providers. The law also makes it illegal to request or require genetic testing for enrollment in an insurance plan or to base premiums on genetic testing.
11/25/2008 - Internal threats are a major organizational risk. A new online encyclopedia makes IT managers’ lives easier by listing applications, grading their severity of risk, and explaining what systems they affect.
10/28/2008 - A new law (formerly H.B. 2421) recently enacted in Iowa will increase training requirements for security guards that work in commercial establishments that sell alcohol. The extra training will include anger-management techniques, recognition of false IDs, information on laws relating to alcohol consumption, and procedures for safe removal of patrons from the premises.
10/28/2008 - Information security professionals will play a more strategic role in the future, according to a study from the London-based Information Security Forum. They’ll also spend more time predicting future threats and less time ensuring regulatory compliance.
10/28/2008 - The Center for Democracy and Technology and Ernst & Young LLP surveyed 60 organizations about the risk of telecommuting and found that most companies acknowledge the risk but sideline addressing it for more pressing matters.
10/28/2008 - One in three IT professionals have used administrative passwords to snoop on company and employee data, according to security vendor Cyber Ark. Improperly viewed information includes salary details, personal e-mails, and company board minutes.