Information Security and Ignorant Management?

jmahler asks: "Suppose you work for a fairly decent-sized (but independent) CPA firm in the IT department. Suppose further that you have repeatedly warned the partners of the dangers of having unsecured laptops in the field, and have requested to replace the very thin, and rapidly aging line of defense (and functionality) currently protecting your network from all of the mean and nasty folks on the Internet. Let's continue, then, to suppose that the partners have all agreed to ignore every recommendation put forward regardless of cost or benefit. Is there a good way, beyond memos and emails, to inform the partnership that the water in which they tread could quickly become dangerous? What about absolving ourselves of responsibility for data theft and loss from a laptop 'disappearance' in the field?"

Fucking CPAs

Having worked in IT for about nine years and having worked mainly with the Accounting Department, let me be the first to say that you can't tell CPAs anything because they already fucking know everything.

You've told them, you've done your job. Now just sit back and watch. Of course you'll have to pick up the pieces later but that's your job. Or at least that's how the CPAs see it.

Re:Stop Laptop Data Theft

[datatheftsecurity]

There is an easy solution that many CPA firms have bought for auditors in the field for their laptops. Go to www.hlsworldwide.com and you can find a Biometric Encryption USB Flash Drive I saw on Fox News (News feature can be seen live on the website). It completely locks down any laptop without the biometric encryption (your live sub-dermal electric signal from your fingerprint) authentication. The device has highest level of encryption in the world 384 Bit 18 layer security far superior to the old 256 AES. Now CIA, NSA and government agencies switching to this technology as it takes a Cray Super Computer 12 years to decrypt one line.