Skip Links

The Mass. 201 CMR 17 Survival Guide

By Bill Brenner, CSO
November 18, 2009 10:41 AM ET

CSO - Ask IT security practitioners what their greatest compliance concern is these days and most will mention Mass 201 CMR 17.

It is one of many state laws companies must heed, on top of such industry standards as PCI DSS and federal laws like HIPAA and Sarbanes-Oxley.

CSOonline.com has been covering the challenges of Mass. 201 CMR 17 extensively, and has assembled this collection of articles and audio content to help companies plot their course. We hope you find it helpful.

ARTICLES

Mass 201 CMR 17: A Survival Guide for the AnxiousSecurity experts offer tips for navigating Mass 201 CMR 17. Will your business be ready?

Why Mass. 201 CMR 17 Deadline Was ExtendedCompanies that live or do business in Massachusetts have a few extra months to meet compliance deadlines for the state's tough 201 CMR 17 data protection law. The simple reason: Too few understand the law to meet the original deadlines.

Mass. 201 CMR 17: The Darkness and the LightSome security experts say Massachusetts' new data protection law (Mass. 201 CMR 17) is among the toughest they've seen. Three IT security practitioners who must deal with the law opine on whether it's too harsh or not tough enough.

Mass. Data Protection Law Amended, Deadline Extended (Again)Extension gives businesses until next year to comply with tough data privacy rules

CSO Disclosure Series | The Dos and Don'ts of Disclosure LettersOne security breach, two letters, 11 lessons in the art of telling customers you screwed up. Two PR pros deconstruct the messages that Monster.com and USAJOBS were really giving to customers whose personal information had been disclosed. Part of an in-depth series about disclosing breaches.

PODCASTS

Mass Data Breach Law In The CrosshairsAt the (ISC)2 Secure Boston event, a panel of legal and security experts examine the most problematic parts of Mass. 201 CMR 17 and offer a strategy for achieving both compliance and true security. (Part 1 of 2)

Mass Data Breach Law Headaches, Part 2At the (ISC)2 Secure Boston event, a panel of legal and security experts examine the most problematic parts of Mass. 201 CMR 17 and offer a strategy for achieving both compliance and true security. (Part 2 of 2)

Security Pros' Concerns Over 201 CMR 17This special edition is a recording of last week's discussion on the new data protection law at the monthly meeting of the National Information Security Group (NAISG).

Our Commenting Policies
Latest News
rssRss Feed
View more Latest News