The State Worker

Chronicling civil-service life for California state workers

June 29, 2011
How Public Health responded to last year's data breach

We mentioned on Monday that the state Department of Public Health has reported it suffered its second sensitive data breach in a year. That led us to ask, what has the department done to tighten its data security since last year?

The latest case involved someone copying files with names, addresses, Social Security numbers and other information on about 9,000 current and former employees onto a separate hard drive that was taken off state premises.

The first case happened last September when a Southern California field office mailed an unencripted computer tape. The opened envelope arrived at Sacramento HQ, but the tape containing sensitive information about 2,550 facility residents and employees, didn't.

There's been no known misuse of the information in either case.

We asked Public Health spokesman Al Lundeen what the department did after the tape was lost in the mail. Here's his e-mailed reply:

The following steps have been implemented resulting from the lost back-up tape:

1. CDPH Licensing and Certification back-up tapes are encrypted.
2. Licensing and Certification District/Field Offices' back-up tapes are shipped using a secured mail carrier.
3. Licensing and Certification continues to participate in researching the possibility of a system which would eliminate the use of magnetic tapes for back-up purposes and would allow for a remote back-up process.
4. The back-up process is conducted by or overseen by a member of the management team.
5. CDPH has developed and implemented policies and procedures to record any and all activities associated to the back-up process. These policies and procedures allows for stronger communication between the field offices and headquarters.

Categories: Business of Government, Tech issues

Posted by
10:04 AM 9:35 PM | Comments

© Copyright The Sacramento Bee. All rights reserved.

About Comments

Reader comments on Sacbee.com are the opinions of the writer, not The Sacramento Bee. If you see an objectionable comment, click the "report abuse" button below it. We will delete comments containing inappropriate links, obscenities, hate speech, and personal attacks. Flagrant or repeat violators will be banned. See more about comments here.

What You Should Know About Comments on Sacbee.com

Sacbee.com is happy to provide a forum for reader interaction, discussion, feedback and reaction to our stories. However, we reserve the right to delete inappropriate comments or ban users who can't play nice. (See our full terms of service here.)

Here are some rules of the road:

• Keep your comments civil. Don't insult one another or the subjects of our articles. If you think a comment violates our guidelines click the "report abuse" button to notify the moderators. Responding to the comment will only encourage bad behavior.

• Don't use profanities, vulgarities or hate speech. This is a general interest news site. Sometimes, there are children present. Don't say anything in a way you wouldn't want your own child to hear.

• Do not attack other users; focus your comments on issues, not individuals.

• Stay on topic. Only post comments relevant to the article at hand. If you want to discuss an issue with a specific user, click on his profile name and send him a direct message.

• Do not copy and paste outside material into the comment box.

• Don't repeat the same comment over and over. We heard you the first time.

• Do not use the commenting system for advertising. That's spam and it isn't allowed.

• Don't use all capital letters. That's akin to yelling and not appreciated by the audience.

You should also know that The Sacramento Bee does not screen comments before they are posted. You are more likely to see inappropriate comments before our staff does, so we ask that you click the "report abuse" button to submit those comments for moderator review. You also may notify us via email at feedback@sacbee.com. Note the headline on which the comment is made and tell us the profile name of the user who made the comment. Remember, comment moderation is subjective. You may find some material objectionable that we won't and vice versa.

If you submit a comment, the user name of your account will appear along with it. Users cannot remove their own comments once they have submitted them, but you may ask our staff to retract one of your comments by sending an email to feedback@sacbee.com. Again, make sure you note the headline on which the comment is made and tell us your profile name.

hide comments
blog comments powered by Disqus


About The State Worker

Jon Ortiz The Author

Jon Ortiz launched The State Worker blog and a companion column in 2008 to cover state government from the perspective of California government employees. Every day he filters the news through a single question: "What does this mean for state workers?" Join Ortiz for updates and debate on state pay, benefits, pensions, contracts and jobs. Contact him at (916) 321-1043 and at jortiz@sacbee.com.

FOLLOW US ON FACEBOOK

Now on the State Worker column

State Pay Database

This database allows you to search the salaries of California's 300,000-plus state workers and view up to four years of their pay history.

Latest Capitol Alert headlines

Tag Cloud

Seen on Twitter

Follow @TheStateWorker on Twitter

Categories


May 2013

Sun Mon Tue Wed Thu Fri Sat
      1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30 31  

Monthly Archives


Recent Entries