News & Announcements

Our Holiday Schedules:

Summer:
Last week in July
(approximately July 21-30:
SOX and DF anniversaries)

Winter:
Last week in December
(approximately Dec 25-31:
i.e. Christmas-New Year's)

 

Inside GRC Journal

Login to access

Are You LinkedIn?

Join GRC Group Forum over at LinkedIn to network and connect with the GRC community. Just log in to your LinkedIn account and search goups for GRC Group Forum. See you there!

Member Login

Current member login:

Email:     Password:

 
If you are a member and have forgotten your user ID and/or password click here.

Contact Us

USA: 1-888-WHY-GRCG
Fax: 1-888-FAX-GRC-G
E-mail: email@grcg.com

Main: +1.212.626.9016
Fax : +1.212.712.8897

Information Security Awareness and Data Protection in Today’s Climate

To receive a FREE copy of the PowerPoint presentation via email, click here.
If you're a member of the GRC Group, you can access the presentation by clicking here.

Description

Overwhelmed by data protection expectations and requirements? Confused by the sometimes disparate and differing regulations impacting data protection? Not sure where to even begin?

Our guest speaker, Wes Rhea, VP Information Security (Information Security Officer) at Alere, a leader in specialized health management services, has extensive experience dealing with business, technology and regulatory issues in the context of Information Security. He will present his perspectives on the challenges (and solutions) dealing with a myriad of regulations, and how to use a systematic and streamlined approach to achieving Information Security awareness and data protection in today's volatile and risk-averse business climate.

Event Details

Presentation Method: Web/Phone
Date: June 30, 2009
Length: 60 minutes including Q&A

Presented By

Wes Rhea is an IT executive with 14 plus years experience in the telecommunications, financial and healthcare industries while holding such roles as Vice President - Project Management, Corporate Compliance Officer, Chief Information Officer and Vice President of Information Security. Wes holds an undergraduate degree from Kennesaw State University and a Masters of Business Administration from Troy University as well as being a certified project manager (PMP), certified information security manager (CISM), certified HIPAA professional (CHP), certified Sarbanes-Oxley professional (CSOX) and certified in the governance of enterprise IT (CGEIT).

Currently in the role of Information Security Officer at Alere (formerly Matria Healthcare), Wes provides executive leadership to help enable Alere to meet growth challenges through centralization of all Information Security by protecting our client's data while enabling the business to succeed. Concentrating in the areas of regulatory compliance and IT auditing.

While in the role of Vice President of IT Project Management at Matria Healthcare, Wes provided executive leadership through consolidation of all project disciplines either currently not performed or done on distributed/disorganized basis, as well as furthering the Technology Project Management Office (PMO) for the company.

While in the role of Chief Information Officer (CIO) at Benmark, Wes lead the Information Technology Team in all aspects of the System Development Life Cycle process, including system architecture, infrastructure, product design, product requirements, network communications, telecoms, email, vendor management, project management, software development, quality assurance, information security, user acceptance and implementation.

While in the role of Corporate Compliance Officer for Matria Healthcare, Inc. Wes help implement the first company wide Information Security Policy in compliance with the HIPAA Security Rule of April 20, 2005 to protect patient health information (PHI) as well as established and maintained privacy policies in accordance with HIPAA. Also, initiated, planned and implemented Information Technology 404 controls that resulted in successful compliance for the Sarbanes-Oxley Act of 2002.

Key Topics

  • Overview of the core fundamentals of Information Security
  • Sample data protection requirements of some of the key regulations
  • Challenges associated with integrating expectations and requirements from the various regulations into the business context
  • Solution examples
  • Key takeaways for the future