Clareity Consulting is committed to improving information security practices in the real estate industry and employs three strategies in this effort: Security Articles. There are many useful articles posted on this website. You are welcome to reprint them, but please to do so. Information Security Workshops. Bringing real estate information security education to regions across the U.S., these NAR-sponsored events enable real estate professionals and their vendors to begin to implement an information security program for their company. More information about the workshops. Clareity also provides information security presentations in shorter formats. Security Audits. Risk assessment and remediation is a management responsibility for business owners and in some states is mandated by law (i.e. Oregon 646A.622). Clareity provides more security audits for our industry than any other company. If your company has not had a security audit in the last few years, please call Matt Cohen (612-331-1788) to discuss your needs. The most important thing to know about "Information Security" is that it is a much broader problem than "Computer Security". While there have been some significant computer security breaches in our industry, most of the publicized information security breaches have had nothing to do with computers. So, there are roles in an information security program for management, IT staff - and everyone else.

Get started: Agents Brokers   Real Estate Info Security Workshops These workshops provide FREE, hands on practical security education for MLS, association, and broker IT staff, consultants and vendors - sponsored by NAR. Upcoming workshops include: Portland, ME - 5/30/2013 Honolulu, HI - 11/21/2013 More information about the workshops

Security Articles

• General Interest
• Management
• Technical

General Interest

• Top 10 Tips for Real Estate Agent Information Security
• Essentials for Real Estate Brokerage Information Security
• Some MLS Printouts Don't Go in the Trash
  Summary: Many MLS reports - and other documents agents handle - need to be shredded, not just thrown away.
• Evaluating Office Physical Security
  Summary: How to evaluate whether you are providing appropriate physical protections for sensitive information.
• What Realtors Need to Know About International Clients and Their Privacy Expectations
  Summary: If you have international clients you need to know the applicable security and privacy laws.
• Video: Creating and Remembering Strong Passwords
  Summary: This video shows you how to create - and remember - unique and strong passwords for each website you visit.
• Mobile Device Security: Best Practices and Tools
  Summary: Mobile device information security risks can be lowered using practices and tools.
• Secure Computer and Mobile Device Disposal
  Summary: How to remove sensitive information from old computers and other devices before getting rid of them.
• Encryption for Real Estate Professionals
  Summary: Real estate professionals handle a lot of personal and confidential information and encryption is an important tool for keeping that information safe
• How You Are Affected By Consumer Privacy and Info Security Laws?
  Summary: What information do you store that may be sensitive and subject to info security and breach notification laws?
• Information Security for Non-Geeks
  Summary: Physical security is an important part of information security - and you don't need a 'geek' to help with this.
• When Your Web Site Betrays Your Client
  Summary: Why you need to make your web site hard to 'scrape'.
• You Use Cloud Computing - Is it Secure?
  Summary: Understanding and managing cloud computing risks
• A Dangerous Chat: How Hackers Can Abuse Your Trust (longer article version)
  Summary: Before installing software on your computer on request or disclosing sensitive information over the phone or via email, it is important to verify the identity of the person making the request and their need to know.
• PCI Compliance and You
  Summary: Whether your own business accepts credit cards or you give your own card information to others, you should be aware of "PCI Data Security Standards".
• Single Sign On Technology Making Your Life Easier
  Summary: New tools, sponsored by NAR and created by Clareity Security, will make your life easier.

Management

• The Human Element of Information Security (longer article version)
  Summary: This article is about the importance of good management practices and information security policies in improving information security practices. It is written for executives and management staff of MLSs, associations and other real estate organizations and businesses.
• Business Owner Oversight of Information Security
  Summary: Information security starts with management taking responsibility for it, beginning with a security assessment.
• Creating a Security Policy for "BYOD"
  Summary: Addressing the "BYOD" or "Bring Your Own Device" (to work) security issue via policy to reduce liability.
• Contracting for Security in Your Mobile App
  Summary: If you don't contract for security features in your mobile app, chances are slim it will be created with security in mind.
• The Four IT Guys
  Summary: Sometimes "IT Guys" are resistant to risk assessment and mitigation. Business owners must take action.
• Limiting Internet Use to Protect Your Company
  Summary: The most innocent employee activities can have the worst security consequences for employers, and uncontrolled Internet use is a perfect example of this.

Technical (at least a little)

• Reducing WordPress Blog Hacking Risks
  Summary: Wordpress updates, configuration and plugins key to reducing your hacking risk
• Resources for Securing Workstations and Servers
  Summary: A list of external links to resources for securing common computer platforms

Home Page  |  The Company  |  Services  |  Clients  |  Publications  |  Blog  |  Events  |  Contact