Information Governance (InfoGovernance) is the specification of decision rights and an accountability framework to encourage desirable behavior in the valuation, creation, storage, use, archiving and deletion of information. It includes the processes, roles, standards and metrics that ensure the effective and efficient use of information to enable an organization to achieve its goals. Information governance should be an element in planning an enterprise's information architecture.

(Gartner Hype Cycle for Legal and Regulatory Information Governance, 2009, December 2009).

An Engagement Area (EA) is an area where the commander of a military force intends to contain and destroy an enemy force with the massed effects of all available weapons systems.

(FM 1-02, Operational Terms and Graphics, September 2004).

Monday, March 23, 2015

A Look Back: NetDiligence 2014 Cyber Claims Study

From Traub Lieberman Straus & Shrewsberry
The NetDiligence 2014 Cyber Claims Study relies on data voluntarily provided by insurers about amounts paid out on cyber claims occurring from 2011 through 2013. Since the Study only accounts cyber claims reported to larger insurers, NetDiligence believes its study only accounts for 5-10% of the total number of all cyber claims handled in those years.
Among the highlights, the Study found that the predominant type of information exposed in any cyber claim remains personally identifiable information (“PII”). Under a definition of PII expanded to include email addresses and passwords, 97% of the information exposed constitutes PII. The remaining data exposed included protected health information (“PHI”) under HIPPA and payment card information (“PCI”).