IT Compliance Advisor:

ITKE grandparent


December 1, 2016  11:17 AM

Trump presidency raises questions for regulatory compliance

Christian Stafford Christian Stafford Profile: Christian Stafford
Compliance, cybersecurity, Data privacy, Drones, Hack, Hackers, privacy, Ransomware, regulatory compliance

The future of regulatory compliance is under scrutiny as President-elect Donald Trump's administration continues the transition process. Also in recent GRC news: Hackers demanded ransom after disabling San Francisco's transportation system, 'dronejacking' could become the next security issue and...

October 20, 2016  2:30 PM

GRC roundup: UK intelligence agencies’ data collection efforts deemed illegal

Christian Stafford Christian Stafford Profile: Christian Stafford
Compliance, Data privacy, Facebook, personal data, privacy, Privacy Shield, regulatory compliance, UK

Government intrusion of data privacy continues to be a global issue, as a British court recently ruled that UK security agencies illegally collected citizens' data for 17 years. Also in recent GRC news: Facebook joins the list of businesses adopting the


September 8, 2016  2:34 PM

Apple tax troubles: EU says Apple owes Ireland $14.5B in unpaid taxes

Christian Stafford Christian Stafford Profile: Christian Stafford
"Apple Inc.", 2016 elections, Apple, cybersecurity, Data breach, Data privacy, Dropbox, Hack

The E.U. has ordered Ireland to collect more than $14B in taxes from Apple that, according to the E.U., have gone unpaid for years. Also in recent GRC news, state voter registration system breaches continue to highlight vulnerabilities in the U.S. election process and Dropbox finally confirmed more...


August 15, 2016  1:08 PM

Bitcoin hack leaves investors apprehensive

Christian Stafford Christian Stafford Profile: Christian Stafford
Bitcoin, Data privacy, Data-security, Hack, HIPPA, Pokemon GO, privacy, Security, Tinder

Investors are nervous about bitcoin's future value after Bitfinex, one of the world's "big four" bitcoin exchanges, was hacked and had nearly $65 million worth of bitcoins stolen. Also in...


July 28, 2016  1:24 PM

Privacy Shield gets regulators’ stamp of approval

Fran Sales Fran Sales Profile: Fran Sales
Data access, Data privacy, Data transfer, GDPR, GRC strategy, HIPAA Compliance, PHI, Privacy Shield, regulatory compliance, SEC

The Privacy Shield data transfer pact finally received the green light from U.S. and EU privacy regulators, and businesses can begin registering to comply with the framework...


July 15, 2016  11:48 AM

Gartner: Cybersecurity control a concern for digital businesses

Mekhala Roy Mekhala Roy Profile: Mekhala Roy
cybersecurity

Digitization requires big changes to companies' strategic processes, and security is no different: In a recent report, Gartner predicts that 60% of digital businesses will experience...


June 17, 2016  12:34 PM

Medical records theft from NFL team’s trainer could violate HIPAA

Fran Sales Fran Sales Profile: Fran Sales
Data breach, Dodd-Frank, EMR, grc, HIPAA, risk, SEC

Late last month, the NFL Players Association informed its member teams that a Washington Redskins trainer's laptop containing players' medical records was stolen and that it would collaborate with the U.S. Department of Health and Human Services to determine possible patient privacy violations....


May 26, 2016  1:19 PM

How security standards help companies prioritize data protection

Fran Sales Fran Sales Profile: Fran Sales
Authentication, Consumer data, Data security standards, GRC strategy, nist, Privacy and security, regulatory compliance, SANS, Threat intelligence

In part one of this blog post, John Pescatore, director at the nonprofit cybersecurity training provider SANS Institute, delved into...


May 26, 2016  1:10 PM

Businesses must look beyond regulations for security and privacy guidance

Fran Sales Fran Sales Profile: Fran Sales
Consumer data, Data security standards, GRC strategy, personal data, Privacy and security, regulatory compliance, SANS

Last month, Sens. Richard Burr and Dianne Feinstein from the Senate Select Committee on Intelligence unveiled a draft of the Compliance with Court Orders Act of 2016 that would require all technology companies -- from mobile device manufacturers to application makers -- to comply with court orders...


May 5, 2016  9:12 AM

PCI DSS 3.2 multifactor requirement among the version’s biggest changes

Fran Sales Fran Sales Profile: Fran Sales
Blockchain, Compliance, Data security standards, GDPR, grc, IBM, multifactor authentication, PCI compliance, PCI DSS, regulatory compliance, SEC

Details surrounding the updated Payment Card Industry Data Security Standard show that version 3.2 includes new multifactor authentication and encryption requirements. Also in recent GRC news: SEC enforcement actions -- or the lack of them -- are raising concerns about the agency's ability to...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: