IT Compliance Advisor:

Security


July 15, 2016  11:48 AM

Gartner: Cybersecurity control a concern for digital businesses

Mekhala Roy Mekhala Roy Profile: Mekhala Roy
cybersecurity

Digitization requires big changes to companies' strategic processes, and security is no different: In a recent report, Gartner predicts that 60% of digital businesses will experience...

May 26, 2016  1:19 PM

How security standards help companies prioritize data protection

Fran Sales Fran Sales Profile: Fran Sales
Authentication, Consumer data, Data security standards, GRC strategy, nist, Privacy and security, regulatory compliance, SANS, Threat intelligence

In part one of this blog post, John Pescatore, director at the nonprofit cybersecurity training provider SANS Institute, delved into...


May 26, 2016  1:10 PM

Businesses must look beyond regulations for security and privacy guidance

Fran Sales Fran Sales Profile: Fran Sales
Consumer data, Data security standards, GRC strategy, personal data, Privacy and security, regulatory compliance, SANS

Last month, Sens. Richard Burr and Dianne Feinstein from the Senate Select Committee on Intelligence unveiled a draft of the Compliance with Court Orders Act of 2016 that would require all technology companies -- from mobile device manufacturers to application makers -- to comply with court orders...


May 5, 2016  9:12 AM

PCI DSS 3.2 multifactor requirement among the version’s biggest changes

Fran Sales Fran Sales Profile: Fran Sales
Blockchain, Compliance, Data security standards, GDPR, grc, IBM, multifactor authentication, PCI compliance, PCI DSS, regulatory compliance, SEC

Details surrounding the updated Payment Card Industry Data Security Standard show that version 3.2 includes new multifactor authentication and encryption requirements. Also in recent GRC news: SEC enforcement actions -- or the lack of them -- are raising concerns about the agency's ability to...


April 28, 2016  12:15 PM

At Google, company culture key is to assuring consumer privacy

Fran Sales Fran Sales Profile: Fran Sales
Compliance, Consumer data, Corporate culture, Data privacy, Data regulations, Google, online privacy, Privacy and security, regulatory compliance

The lack of comprehensive federal privacy legislation leaves not only consumers vulnerable, but also companies frustrated. Many consumers lack information about the many ways their personal data is used, what parties use it, and the ways it could be potentially misused; meanwhile, companies seeking...


March 24, 2016  10:41 AM

Cybersecurity questions get the boardroom’s attention

Fran Sales Fran Sales Profile: Fran Sales
board, CISO, Compliance, Cyberattacks, cybersecurity, Data breach, Data breach disclosure, Information security, Microsoft, RSA Conference

"Security has transcended from an IT issue to a boardroom issue." This was how Microsoft corporate vice president and CISO Bret Arsenault opened his panel discussion at last month's


March 8, 2016  4:18 PM

RSA 2016: Adobe, Google and Microsoft prepare for EU GDPR

Fran Sales Fran Sales Profile: Fran Sales
Adobe, Chief Compliance Officer, Chief Privacy Officer, Data privacy, Data protection, European Data Protection legislation, Google, Microsoft, regulatory compliance, RSA, RSA Conference, Safe Harbor

When General Data Protection Regulation -- a new EU-wide data protection framework that will replace Safe Harbor -- was introduced by European Union on December 2015, global...


January 21, 2016  3:21 PM

FTC report: Big data analytics could prove harmful to consumers

Fran Sales Fran Sales Profile: Fran Sales
Big Data, Big Data Analysts, Consumer data, FTC, FTC Act, Information security, Predictive Analytics, regulatory compliance

Big data analytics have proven extremely beneficial to both companies and consumers across a wide range of industries, producing valuable insight in fields like healthcare, education and transportation....


January 7, 2016  1:31 PM

Repeat HIPAA violators face minimal ramifications

Fran Sales Fran Sales Profile: Fran Sales
grc, HIPAA, PCI compliance, PCI DSS, regulatory compliance, SSL/TLS, TLS

Despite several HIPAA violations, recent data analysis found U.S. healthcare providers such as CVS and the VA face few punitive actions. Also in recent GRC headlines: Companies have two more years to meet the TLS requirement under PCI DSS, and experts foresee big changes ahead for the FCPA's...


December 22, 2015  4:56 PM

GDPR: How will the EU data protection law impact U.S. industry?

Fran Sales Fran Sales Profile: Fran Sales
Compliance, cybersecurity, Cybersecurity legislation, Data privacy, Data protection, EU directive 95/46, European Data Protection legislation, Safe Harbor

Three years in the making, European Union officials finally agreed on a draft of the General Data Protection Regulation. The EU-wide legal framework sets standards for data...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: