Brandeis University

Written Information Security Policy (WISP)

The objective of Brandeis University (“University”) in the development and implementation of this comprehensive written information security policy (“WISP”) is to create effective administrative, ...
No Jitter

How to Draft a Useful Data Security Policy

A consultant colleague recently reached out with some questions on how to craft a good organizational information security policy. I’ve got experience with this, as a graduate-level legal instructor, ...
JD Supra

What is an Information Security Framework and Why Do I Need One?

An information security framework, when done properly, will allow any security leader to more intelligently manage their organization's cyber risk. The framework consists of a number of documents that ...
IPWatchdog

Privacy and Data Security Due Diligence: Best Practices for Avoiding Bumps Down the Road

“The information gleaned from the [privacy due diligence] process may result in a change in plans as to the level of operational integration that the acquirer may ...