| “The program was very informative and well presented. I will report all the information to our HIPAA Security Officer for his interest. Very enjoyable seminar. Ali was great!” |
Rita Bickham |
| Roosevelt General Hospital |
| |
|
| “Excellent presentation. Ali definitely knows his business and is excited about his work. He brought about information I hadn’t thought about. He helped me identify a few valuable Web-sites. He is knowledgeable about government regulations. Thank you for this opportunity.” |
Marilyn Buchanan |
| Roosevelt General Hospital |
| |
|
| “I thought the defense-in-depth slide was very useful. I also appreciate the hard figures about costs to an organization (such as what a 300-bed hospital would be spending).” |
Maggie Welch |
| Aquila group |
| |
|
| “The executive brief on Moving to a Digital Healthcare Environment was wonderful. I am a clinician who is new to the IT world and found the information useful and applicable to the wide variety of people in the audience. I thought it was a great summarization of challenges, prioritization and critical steps towards enterprise security.” |
Rose Marie Prince, RN |
| Presbyterian Healthcare Services |
| |
|
| “Ali, very nice job! IBM is focused in healthcare on single sign-on, context management, pervasive/wireless, back up and disaster recovery along with helping customers get ready for electronic health records – all areas emphasized in your presentation.” |
Sandy Summers |
| IBM |
| |
|
| “Fantastic presentation. This brings up many questions and concerns. It also clarified questions we struggled with.” |
Greg Meder |
| WWT |
| |
|
| “Great presentation by a skilled speaker that kept the audience interested, informed and excited. Speaker was excited and motivated about subject and material. The excitement translated to the audience also.” |
Jason Kochick |
| Sun Healthcare |
| |
|
| “The criticality of the topic has been greatly ignored and the presentation brought the importance of these issues into sharp focus. Unfortunately, many organizations have management teams who attempt to get by with the minimal amount of money spent and the lowest level of compliance regardless of the fact that compliance requirements are getting more complex.” |
Kent Langsteiner |
| Lovelace Clinic Foundation |
| |
|
| “I enjoyed the presentation and found the information valuable for our staff.” |
Vito Capobianco |
| New Mexico Medical Review Association (NMMRA) |
| |
|
| “Ali Pabrai provided a passionate, concise presentation on a very complex and difficult to explain topic. Excellent examples and references.” |
William Kleefisch |
| GMP Networks, LLC |
| |
|
| “An obvious extension beyond the particulars of making solutions like Control Compliance Suite and Policy Manager work is to have a good functional knowledge of the regulatory landscape. I gathered from your presentation that you really did a good job of pulling together the frameworks and regulations in to a useful whole and I really appreciate your help.” |
Jeff Tye |
| New Mexico Medical Review Association (NMMRA) |
| |
|
| “Enthusiastic presenter. Keeps participants engaged in subject matter. Good technical content.” |
Kim Ries |
| Ernest & Young |
| |
|
The CSCS class was very informative and pertinent to the key items faced today in the IT security world. Ali Pabrai was very knowledgeable and a very strong presenter. I enjoyed the structure of the class and the format it was delivered. |
Bob Ranalla |
| Ernst & Young |
| |
|
This work would not have been possible without the thorough review by many of my peers in the industry. I am very grateful to many individuals in providing me with feedback to further improve the quality of this work. Testimonials are provided from these individuals below.
| “Ali’s knowledge was communicated in a wonderful way. He is definitely passionate about what he does – consulting and teaching. He has the ability to pass on that excitement to everyone. Ali is a great resource and a wonderful human being.” |
Celines Nieves |
| Trinexus, Inc. |
| IT Consultant |
| |
|
| “It is interesting to see how one can become excited and knowledgeable about information security just by spending a few minutes with Ali. The course was very useful in how well it integrated enterprise security issues which can appear at first sight not to have much relationship.” |
Juan Pablo Semidey |
| CISSP |
| Trinexus, Inc. |
| |
|
| “Knowledge is power. Definitely this was a powerful course in information security – focused on getting your business compliant with the law and standards that apply to the industry. Very well organized information strategies. ” |
Nora Bonilla |
| Project Manager |
| Inmediata, Inc. |
| |
|
| “Before I took this course, I only had a superficial idea of security technologies. Now I have a vision to do my job. Thanks for all the references to find answers to typical questions in information security.” |
Mayra C. Rivera |
| Compliance Officer |
| Hato Rey Pathology Associates |
| |
|
| “Sincerely the most amazing and interesting seminar I have ever attended. Pabrai has incredible knowledge and knows how to communicate successfully. It is a must for any person who needs to be up-to-date in the compliance world. I will never forget the experience and the knowledge I obtained from this program. Thank you Ali!” |
Alfonso J. Vazquez |
| Chief Compliance Officer |
| Simonpietri Hemisferica, Inc. |
| |
|
| “It was a very good experience! The way Ali Pabrai explained many things made me understand several things that I have been doing for some years. Now I get it. I feel much more prepared to address the security challenges for my organization and develop a comprehensive security plan.” |
Emmanuel Morales |
| IT Manager |
| Global Health Plan of Puerto Rico |
| |
|
| “I found The Art of Information Security to be a foundation program for every modern business. It has been a learning experience that I would recommend to any person that has security responsibility in the industry.” |
Wilfredo Santana |
| IT Director |
| FHC Health Systems of Puerto Rico |
| |
|
| “The event provided a lot of necessary knowledge across a wide area to protect my organization’s critical assets. Ali is very interested to show everyone how they can better defend their vital assets.” |
Miguel Aponte |
| IT Director |
| Hospital Wilma N. Vazquez |
| |
|
| “It has been a great educational experience. Very detailed and very insightful. I now have a wider view of what regulatory compliance requires from the health industry. Great resource.” |
Dennise Javierre |
| Hospital Hermanos Melendez |
| |
|
| “This is a whole new view on information security. It was easy to understand even for those with minimal security expertise.” |
Alberto Valentin |
| ServiLab, Inc. |
| |
|
| “It was a very inspiring experience. After searching for responsible and correct information about electronic information security management I have finally found the tools to start the development of security strategy and policies for my organization.” |
Amarilys Gonzalez |
| U.S. Army |
| |
|
| “When you are not informed, you do things incorrectly. The experience of the knowledge of the class was very helpful to me because I am now informed. I know where, what and how to do all the things related to HIPAA Security. The active interaction with Ali gave me confidence to believe that we can do all the processes right. The material, references, guidelines and the wonderful techniques Ali gave us were just the best. Thank you.” |
Ivelisse Melendez |
| Chief Compliance Officer |
| Inmediata, Inc. |
| |
|
| “This has been a terrific experience. I’m very much excited about how many things I have discovered and learned in one day. I knew there were many things to do related to security in our organization, but this has certainly made me more acquainted about what needs to be done, how and when. I am very much prepared for the battle and determined to win. Thank you very much Ali.” |
Elvis Lopez |
| Chief Technology Officer |
| Inmediata, Inc. |
| |
|
| “Listening to your presentation made me think more about how to implement my IPS that we are making in the network security class. ” |
Sean Durkin |
| Lab Staff |
| IIT |
| |
|
| “Good presentation!” |
Debrah Kimrach |
| Office Assistant |
| IIT |
| |
|
| “Excellent presentation. Very informative and comprehensive. I highly recommend ecfirst for your security needs.” |
Mohan Jain Ph. D. |
| President |
| India Development Coalition of America |
| |
|
| “A very thought-provoking, presentation - Uday leaves the audience with a thirst to learn more. ” |
Anup Manchandra |
| Vice President |
| Teleprime |
| |
|
| “Uday is a dynamic, exciting speaker who oozes knowledge of this important security area. ” |
Mark Bergren |
| Director |
| Lucent Technologies |
| |
|
| “You were able to give a comprehensive view of different security standards we need to comply with. The security threat and vulnerability of wireless networks was very informative. The presentation shared your passion on the subject. Thank you for your time.” |
Kurien Eapen |
| Wipro Technologies |
| |
|
| “Interesting topics! Knowledgeable person! Thank you for your time.” |
Rajendran Krishnasamy |
| Wipro Technologies |
| |
|
| “Very useful and informative. Thrilled to know about security standards and their importance.” |
Radhika K. |
| Wipro Technologies |
| |
|
| “The presentation of information security was very god. References to regulations was very useful.” |
Srinath, B.V. |
| Wipro Technologies |
| |
|
| “Good presentation in terms a high level picture of IT security in the industry today.” |
Viquar Ahmed. |
| Wipro Technologies |
| |
|
| “The presentation helped us to know the high level security and the concepts used with an example. It was useful to know this information which will help us to develop applications which are more secure.” |
Narayana Murthy |
| Wipro Technologies |
| |
|
| “Thank you very much.” |
V. Vasudev |
| Wipro Technologies |
| |
|
| “The session was good.” |
A.M. Smitha |
| Wipro Technologies |
| |
|
| “The session was interesting and provided useful information.” |
K.M. SivaKumar |
| Wipro Technologies |
| |
|
| “Use session. The seminar presentation was good.” |
A Madhai |
| Wipro Technologies |
| |
|
| “The presentation was very good.” |
VP Sunil Kumar |
| Wipro Technologies |
| |
|
| “Interesting and information session.” |
Veerabhadra B. |
| Wipro Technologies |
| |
|
| “Good overview of the latest security environment evolving in today’s market.” |
Manu Malik |
| Wipro Technologies |
| |
|
| “Wireless and contingency planning slides were excellent.” |
Tarini Mohapatra |
| Wipro Technologies |
| |
|
| “The session was very information. Session was punctuated with well-timed humor.” |
K. Mukundakumar |
| Wipro Technologies |
| |
|
| “You were superb in delivering the session. The session was very interactive and informative.” |
Kumar Sanjay |
| Wipro Technologies |
| |
|
| “It was a very good presentation. You were able to pack in a lot of information and disseminate them smoothly.” |
G. Srinivasan |
| Wipro Technologies |
| |
|
| “It was a good presentation that gave us an overall perspective of information security.” |
Balakrishnan Venkataraman |
| Wipro Technologies |
| |
|
| “The session really helped me to understand the security challenges across many industries.” |
Sumit Basu |
| Wipro Technologies |
| |
|
| “Session was good. ” |
Nara Sreenivasulu |
| Wipro Technologies |
| |
|
| “ You seem very passionate and interested in what you do. Makes it easier on the audience to pay attention with the humor included. ” |
Matt Hasbrouck |
| Wipro Technologies |
| |
|
| “This was a really good session. After attending this session I have a much better understanding of security policies that will be useful to me and my clients.” |
Madhu Jain |
| Wipro Technologies |
| |
|
| “Overall – very good” |
Salah Uddin |
| Wipro Technologies |
| |
|
| “The session was useful for me.” |
Mallekajunappa Kote |
| Wipro Technologies |
| |
|
| “Very informative session.” |
M. C. Kamal Kumar |
| Wipro Technologies |
| |
|
| “Overall – a very information session.” |
Elango Munuswamy |
| Wipro Technologies |
| |
|
| “Very informative session in terms of security challenges.” |
Krishna Jag |
| Wipro Technologies |
| |
|
| “Very informative session.” |
Rajeesh Menon |
| Wipro Technologies |
| |
|
| “The session was really worthy.” |
Divya Mani |
| Wipro Technologies |
| |
|
| “Session was a very good overview about security needs and concerns.” |
Rajesh Salian |
| Wipro Technologies |
| |
|
| “Good, power packed presentation, well punctuated with humor.” |
Vijay Prashanth |
| Wipro Technologies |
| |
|
| “Good session about information security.” |
Praveen Marath |
| Wipro Technologies |
| |
|
| “Overview was very good, with impressive presentation skills.” |
Ayan Basu |
| Wipro Technologies |
| |
|
| “Session was very good.” |
Vishwanath Nagaraj |
| Wipro Technologies |
| |
|
| “Session was informative ad an eye-opener to all links and policies of information security.” |
Rasmy S. Anand |
| Wipro Technologies |
| |
|
| “A very good session.” |
| Satyendranath Akula |
| Wipro Technologies |
| |
|
| “The session was very informative.” |
| Ganesh Tinium |
| Wipro Technologies |
| |
|
| “The session was very crisp, informative and interesting. Got to know the major components of information security.” |
| Subhashini Nagharajan |
Wipro Technologies |
| |
|
| “The session was really interesting. It was useful to understand the security standards in the context of different verticals.” |
| Sreeshma Velayudhan |
Wipro Technologies |
| |
|
| “Uday presented well all the relevant aspects of security.” |
| Srinivas P B S |
| Microland Ltd. |
| |
|
| “It has been a good learning experience for me. I look forward to leverage all the knowledge in future endeavors.” |
| Arun Kumarak |
| Microland Ltd. |
| |
|
| “It was a good session on security. I appreciate your efforts.” |
| Ravi Joshi |
| Microland Ltd. |
| |
|
| “Very informative. Clarity in expressing the security subject matter. All in all a great session.” |
Naveen A. R. |
| Microland Ltd. |
| |
|
| “
Good overview of security information. Interactive session and good Inputs.” |
| Deepu S. Reddy |
| Microland Ltd. |
| |
|
| “Session was very informational.” |
| Kaja Kaiser |
| Microland Ltd. |
| |
|
| “Wonderful Session.” |
| Syed Mohammed |
| Microland Ltd. |
| |
|
| “Good stuff.” |
| Madhan Kumar V. |
| Microland Ltd. |
| |
|
| “I learned a lot about various legislative requirements guiding the security domain. It is very interesting to know how the domain is talked about in the international arena. The session was very interesting.” |
Ravi Kaul Joshi |
| Microland Ltd. |
| |
|
| “ The session was an eye opener and indeed very interesting and exciting. Pabrai’s work has indeed opened doors to new opportunities in the IT space in India. Keep up the great work and wish you all the best in all future endeavors. ” |
| Gautam Bajaj |
| Microland Ltd. |
| |
|
| “Very good overview of security frameworks. The session on business continuity was very useful.” |
| Raj |
| Microland Ltd. |
| |
|
| “Very informative.” |
| J. D. Venugopal |
| Microland Ltd. |
| |
|
| “Thanks Uday for the time spent and the effort. The topics were really wide spread and informational.” |
| Shekhar Bose |
| Microland Ltd. |
| |
|
| “I really enjoyed my session today. Session was really engrossing and informative. Thanks for the class.” |
| Ritu Saxena |
| Microland Ltd. |
| |
|
| “When you talk with Uday Ali Pabrai about security, his energy and passion fill the room. You will experience the same with his book, The Art of Information Security. A plain-language, high-energy book, it is a comprehensive guide to securing the businesses of today and tomorrow. A must read. With two decades of hands-on experience with Who's Who clients across many verticals, he is the security master.” |
| Pradeep Kar, Founder |
| Microland Group, Chairman and Managing Director |
| PlanetAsia, Founder and Chairman |
| |
|
| “ In his practice and in his writing, Mr. Pabrai demonstrates not only a deft understanding of information security but also the ability to clearly communicate it. "The Art of Information Security" succinctly ties together principles, strategy, and tactics - the necessary components for a clear understanding of information security. ” |
| Joel M. Fulton, CISSP, CISA, CISM, CHSS, CHP |
| |
|
| “ The Art of Information Security – The Seven Steps to Enterprise Security is an invaluable resource and an excellent tool for security professionals in any industry. This easy-to-follow road map outlines essential components that every company should have in their security plans and policies. ” |
| Tara Manzow |
| Skills Development Product Manager |
| CompTIA |
| |
|
| “Information has become the key asset of organizations and internet the nerve-wire of business. In an era where success depends on securing and managing information, The Art of Information Security - The Seven Steps to Enterprise Security offers a complete overview with practical approach to implementation of security. This work very well articulates the various facets of information security and helps both novice and experienced professionals identify and implement robust security policies. If you are thinking of information security - this is a Must read!!” |
| Susheel Kumar Ladwa |
| Wipro |
| |
|
| “This work is an elegant summary of the real world experience that Mr. Pabrai "Ali" has gained in countless encounters on the war that is waged every time an organization commits to a security/compliance effort. Every page or two I found myself thinking yes! That was a cruise missile hit right on the target - simple, direct, correct, and effective.” |
| Rod Jackson, InfoSec Consultant, CISSP, CHSS |
| Independent InfoSec Architect, Consultant, and Trainer |
| |
|
| “Over the past several years, it has been my experience that the curriculum, methodology, and work product of ecfirst.com/The HIPAA Academy is by far the ‘gold standard’ for thorough and complete address of HIPAA’s various and sometimes complex rules. Mr. Pabrai and his team have taken the maze of HIPAA regulation and paved a process oriented path that makes understanding and application of the requirements of the law as simple as it can be.” |
| Alan E. Yue, PMP, CISSP, CHSS |
| President |
| PreNetSys, Inc. |
| |
|
| “It has been a pleasure to work with such a talented and knowledgeable person. Thanks to Ali's excellent methodology, technical expertise and attention to detail, my organization is on the way toward meeting the HIPAA Security Rule requirements. Keep up the good work.” |
| William J. Kelty |
| Manager, Technical Services & Telecommunications |
| Sherman Health Systems |
| |
|
| “Mr. Pabrai's knowledge of security issues and regulations is immense, yet he possesses that unique quality - the ability to break things down to a level that any one can understand. Our organization has benefited greatly from his writings and analysis as we prepare to become compliant with the HIPAA Security Rule. His suggestions and tactics have been easy to follow and implement.” |
| Donald Smith |
| Programmer/Analyst |
| Advocat & Diversicare Management Services |
| |
|
| “I have had the pleasure of working with Mr. Pabrai as he assisted HCR Manor Care in preparing for HIPAA Security Rule compliance. This report encapsulates the thorough process he follows in his consulting and training engagements. I believe that security professionals and business managers who faithfully apply the principles in this report will certainly practice the principles of due diligence and due care in their efforts to protect the information assets that are so important to the welfare of their businesses.” |
| Tom Olzak, CISSP |
| Director, Technical Operations |
| HCR Manor Care (A Fortune 500 Business) |
| |
|
| “Be careful -- you might actually learn something! Beyond his engaging style that transforms you from know-nothing into a security warrior, Mr. Pabrai covers a huge amount of practical matters that is often left as 'exercise for the reader'.” |
| Farhad A. Abar, Ph.D. |
| Chief Executive Officer |
| Monet Technologies |
| |
|
| “The Art of Information Security is a comprehensive outline defining the process for securing business continuity. It transcends compliance, promoting security competence. With the process formulated, resources can be devoted to implementation.” |
| Paul Batt |
| Senior Director |
| AMR |
| |
|
| “ This guide exemplifies the unified approach to information security that is necessary to truly protect an organization’s information resources. Technology doesn’t adequately secure unless it is used within a context of process and policy. Ali does a great job in describing what a security program needs, without getting lost in the “how” of implementation. ” |
| John Baldwin, CISSP |
| Manager of Information Security |
| Pella Corporation |
| |
|
| “ An invaluable report that is a must read for CIOs and Information Security Officers (ISOs). ” |
| Vijay K. Gurbani, PH.D |
| Distinguished Member of Technical Staff |
| Lucent Technologies, Inc./Bell Laboratories |
| |
|
| “The Art of Information Security is an extremely well-researched and exhaustive work covering the vast expanse of considerations that affect organizations in the security arena. The overall effort in compiling this piece is commendable.” |
| Ganesh Natarajan, Chief Executive |
| Zensar Technologies |
| Charter Member, TiE and Member of NASSCOM |
| |
|
| “Without security planning, information infrastructure is like a king in center during middle game of chess; open to threats from all directions. The Art of Information Security empowers with the knowledge to critically analyze weaknesses of an enterprise and provides strategies like Bizshield TM to protect information from possible attacks.” |
| Jasvinder Kakar, CHP, CHSS |
| Software Architect |
| |
|
| “The Art of Information Security is an excellent reference for IT and security professionals. It details an essential framework for organizational security. The task of securing an enterprise is never complete. The process and documentation is dynamic in our environment today. The key is ensuring updates that are current with the latest available information (such as resources and tools). This document is a valuable resource for enterprise security” |
| Ruth Brown |
| VP, Information Systems Department |
| Heartland Information Services |
| |
|
| “The Art of Information Security: The Seven Steps to Enterprise Security addresses the basic threat of the information age. This is a profound report on ensuring business security and continuity. The text provides an in depth look into what should be the essential security policy for businesses today. Mr. Pabrai has created a comprehensive manual that is a must-read for security professionals and business executives across all industries.” |
| Prakash Gurbaxani |
| CEO |
| TransWorks Information Services |
| |
|
| “The Art of Information Security - Seven Steps to Enterprise Security presents a customizable framework that businesses can use to secure their digital infrastructure and vital information assets. It is a practical approach and recognizes that security is not a one time thing but an ongoing matter that should be revisited (with revised business objectives) annually. I highly recommend those that are interested in securing electronic information in their business to read and apply this framework.” |
| Kanth Miriyala |
| Head Intellectual Property and Key Initiatives |
| iGate Global Solutions |
| |
|
|
|
|
Last updated: June 29, 2006
|
