Program Overview

Managing Information Technology Risk and Compliance

Information Assurance
Organizations of all sizes continue to integrate electronic information technologies to improve productivity and service, but this introduces security issues that threaten sensitive information. Recognizing this, the Federal Government has taken legislative and regulatory action with the HIPAA Security Standards and the Gramm-Leach Bliley Act to ensure that issues of IT risk are properly addressed. These regulations outline the process by which all organizations should manage IT risk. This process is known as Information Assurance and is based upon accepted standards for IT risk management. Information Assurance is a business process that manages the changing threats to information technology and is integral in securing sensitive data for organizations in any industry.

Minimum Standard of Care
In order to maximize the benefits from new information technologies, organizations must protect against new IT risks and liabilities. But most organizations lack the expertise and the access to affordable solutions to properly address this issue. They also do not realize that their current insurance does not protect against these new legal liabilities and risks. GroupASSURE lets you utilize programs and insurance that easily and affordably address problems such as business continuity, loss or theft of data, and the legal liability that comes with information technology solutions.

The Federal Government has provided a legal definition for the minimum standard of care required for organizations to demonstrate that sensitive and private information is adequately protected. GroupAssure products are designed to support you in your efforts to easily and effectively meet these standards.