IT Compliance Advisor:

Compliance


July 22, 2015  8:39 PM

Dodd-Frank creators discuss the law’s impact; SEC leads FIFA bribery probe

Fran Sales Fran Sales Profile: Fran Sales
Compliance, Dodd-Frank, grc, SEC

Five years after the Dodd-Frank Act was enacted, the creators of the law contemplate the wide-ranging legislation's impact on the financial and banking industries. Also in recent GRC news: The SEC heads a civil probe into public companies potentially involved in the FIFA bribery scandal, and...

July 9, 2015  9:25 PM

SEC commissioner calls for expanded Reg SCI; PCI SCC updates P2P standard

Fran Sales Fran Sales Profile: Fran Sales
Compliance, cybersecurity, Data Encryption, Dodd-Frank, Financial regulations, grc, PCI, PCI DSS, regulatory compliance, SEC

SEC commissioner Luis Aguilar strongly urged his colleagues at a cybersecurity conference last month to push Reg SCI up on their priority lists, particularly in terms of widening the regulation's coverage. Also in the news: The PCI Council updates its peer-to-peer encryption standard; the SEC...


June 5, 2015  5:11 PM

Data as currency: Balancing risk vs. reward

Ben Cole Ben Cole Profile: Ben Cole
Compliance, Data-security, Information governance

(This blog post was written by Jeff Whited, senior manager of education development at ARMA International.) By leveraging big data as an asset, organizations are tapping new business efficiencies and revenue streams. Credit card companies, for instance, sell data on customers' buying...


May 28, 2015  1:31 PM

Wall Street, small banks still plagued by regulatory compliance enforcement

Fran Sales Fran Sales Profile: Fran Sales
Banking industry, Chief Compliance Officer, Compliance, Dodd-Frank, Financial fraud, Financial industry, Financial regulations, grc, regulatory compliance

If recent headlines are any indication, Wall Street banks and other financial institutions continue to garner poor marks when it comes to regulatory compliance: Earlier this month, several major global banks pleaded guilty to federal accusations regarding the rigging of foreign exchange rates. Also...


May 6, 2015  4:44 PM

SEC calls for more executive pay transparency; proposed law could allow hacked firms to keep mum

Fran Sales Fran Sales Profile: Fran Sales
Cell phones, CIO, Compliance, Customer data, Data breach disclosure, Data breach notification laws, Data privacy, Dodd-Frank, FBI, gps, Hacking, SEC, tracking

The Securities and Exchange Commission (SEC) is pushing to provide U.S. shareholders with better metrics to compare executive pay against company performance. In other GRC headlines from recent weeks: A new law moving through Congress could allow breached companies to keep intrusions under wraps;...


April 8, 2015  1:43 PM

New U.S. sanctions target foreign hackers; Facebook battles EU over privacy

Fran Sales Fran Sales Profile: Fran Sales
Banking industry, CIO, Compliance, Cyberattacks, Data privacy, Data protection, European Data Protecion legislation, Facebook, grc, risk

Following the recent streak of high-profile cyberattacks on U.S. companies, the Obama administration last week unveiled a program that would impose sanctions on individuals or groups overseas that are potential sources of cyberthreats. Also in the news: Facebook's privacy practices face growing...


March 26, 2015  1:36 PM

FBI takes a step toward broader hacking authority; most companies fail PCI compliance tests

Fran Sales Fran Sales Profile: Fran Sales
Compliance, Compliance Assessment, Cybersecurity legislation, Data privacy, FBI, NSA, online privacy, PCI compliance, PCI DSS, Privacy Protection

The FBI's quest to expand its hacking authority moved forward last week: A judicial advisory panel approved a rule change regarding how flexible judges can be in granting search warrants outside the bounds of their geographical jurisdiction. Also in the news recently: The Pentagon launched a...


March 11, 2015  5:51 PM

Will weak incentives for security investment force regulatory intervention?

Fran Sales Fran Sales Profile: Fran Sales
CIO, Compliance, Consumer data, cybersecurity, Data breach, Data privacy, Data protection, Forrester, FTC, Governance, grc, GRC strategy, Information security, personal data, Risk assessment, Risk management

Data breaches have been intensifying in recent years, but security expert Benjamin Dean argues that many companies still lack motivation to invest in more robust information security. Also in headlines from the past few weeks: The U.S. and European governments set their sights on data processing...


December 11, 2014  6:31 PM

North Korea applauds Sony breach but denies responsibility

Fran Sales Fran Sales Profile: Fran Sales
CIO, Compliance, Cyberattacks, Cybercrime, cybersecurity, Data security breaches, grc, Hack, Information security, Startups

Sony is the latest big-name company to have its computer network hacked. Corporate information and entire films were leaked online in what some suspect is retaliation by the North Korean government. In other governance, risk and compliance (GRC) news, a growing number of U.S. law schools are...


September 19, 2014  3:58 PM

Former staffers spill on Home Depot’s lacking customer data protection

Fran Sales Fran Sales Profile: Fran Sales
CIO, Compliance, Data breach, Data protection, Governance, regulatory compliance, SEC

Five former Home Depot employees claim the company lacked adequate customer data protection tools and that executives discouraged security system improvements that could have helped prevent the widespread hack of its payment systems earlier this month. Also in compliance and governance news this...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: