Compliance

Compliance news, analysis, research, how-to, opinion, and video.

data recovery
data protection

employees technology planning data [Computerworld, January-February 2017 - HR IT]

Cyber Resilience 2.0, now shipping

The heads of IT security gathered at a recent Think Tank and agreed on a next generation definition of cyber resilience.

owasp

Latest OWASP Top 10 looks at APIs, web apps

The new release of the OWASP Top 10 list is out from the Open Web Application Security Project, and while most of it remains the same there are a couple of new additions, focusing on protections for web applications and APIs

owasp

Contrast Security responds to OWASP Top 10 controversy

Contrast Security has addressed the recent backlash over section A7 of the OWASP Top 10 list for 2017. The company issued a statement on the matter after industry professionals suggested the A7 addition was an example of a vendor...

statue of liberty 359341

Expert: NY breach report highlights third-party risk

New York reported a record high number of breaches last year, just after a new set of cybersecurity regulations went into effect in the state.

regulations

Updates that simplify NIST certifications

A road map that reduces time and resources required across multiple frameworks and regulations.

times square new york

New financial regulations go into effect in New York

On March 1, new regulations go into effect in New York State, requiring that all regulated financial services institutions have a cybersecurity program in place, appoint a Chief Information Security Officer, and monitor the...

healthcare it

HIPAA compliance report card

The HIPAA data breaches immediately followed the US government's directive to push healthcare data online as part of the American Recovery and Reinvestment Act Jan 1 2014. HIPAA is a law that is implemented with IT frameworks like...

signature signing contract handwriting cursive

Hey New York - ready for CyberSOX?

If your organization is regulated by New York State’s Department of Financial Services (DFS), your organization will need to comply with a new cybersecurity regulation that goes into effect on March 1, 2017.

insurance

Learn how to get a rate cut on your cyberinsurance

Companies with optimized Microsoft Office 365 security settings may qualify for lower cyberinsurance rates through The Hartford.

caution tape

A CISO’s guide to avoiding certain CISO jobs

Some Chief Information Security Officer (CISO) jobs are unwanted security executive positions that might not be good for your career. If you are looking for a new CISO position, you may want to know what type of CISO position a...

europe data privacy rules primary2

U.S. companies spending millions to satisfy Europe's GDPR

PwC says CIOs are allocating millions of dollars from their budgets to accommodate the Europe’s General Data Protection Regulation, which will require U.S. companies to meet stringent data privacy rules in 2018.

privacy eye look

Looking back at privacy in 2016

Trevor Hughes, president & CEO of the International Association of Privacy Professionals (IAPP), recaps the top privacy stories of 2016.

crime scence police tape

2016: A reflection of the year in cybercrime

A look back at 2016 predictions in cyber crime and how it all actually played out.

blame 174280704

Who's responsible for data compliance? 25% of executives don't know

A new survey sheds some light on just how little grasp U.S. organizations have on privacy and security regulations.

0 regulated

7 cybersecurity best practices that regulated industries deal with

Whether you work for an organization controlled by compliance standards or you are an independent IT firm looking to build your enterprise business, understanding industry regulations is crucial as it pertains to cybersecurity....

fog visibility island

Visibility, security top concerns for cloud computing adoption

Enterprises considering adopting public clouds are concerned about where their data is located and how it's protected, according to a new survey by IDG.

bullseye hospital healhcare

Healthcare industry is the bullseye for hackers in 2017

Cybercrime at hospitals and healthcare institutions is on the rise

shamed

Name and shame cybersecurity: a gift for cybercriminals?

Cybersecurity “name and shame” practice may significantly boost global cybercrime.

Load More