When it comes to protecting my personal data, I feel both organizationally and technologically handicapped. Of course, there is the Data Protection Act (DPA), which applies mostly to countries of the western world, but how would that actually protect my personal data?

In a BI Advisor I wrote back in February 2004, I said that increased use of radio frequency identification (RFID) technology would lead to new analytic applications for supply-chain analysis and operational business intelligence (BI). (See, " BI and Radio Frequency Identification," 3 February 2004.)

It's been part of programmers' training since the earliest days:

What does it mean to govern for enterprise security or, stated differently, to govern an organization to achieve and sustain an acceptable or adequate level of security?

Our definition of governing for enterprise security (GES) is

In my previous Advisor (" Align IT Strategies for Delivering Right Business Value: Setting the Ground Rules," 20 July 2005), I discussed setting ground rules to establish and manage IT alignment initiatives and shared my observations from the practice. In this Advisor, I focus on the concepts relevant to developing strategies.

Since 9/11, enormous effort has been devoted to answering one basic question: "Why can't our intelligence agencies share critical information?" Indeed, following the attacks, various commissions and public agencies have devoted a large percentage of their time to solving the information-sharing problem.

Tipping points are hard to recognize until well after the fact. But if you look closely, patterns start to emerge that indicate that the information security tipping point is coming or possibly has been reached already.