IT Compliance Advisor:

Security


December 1, 2016  11:17 AM

Trump presidency raises questions for regulatory compliance

Christian Stafford Christian Stafford Profile: Christian Stafford
Compliance, cybersecurity, Data privacy, Drones, Hack, Hackers, privacy, Ransomware, regulatory compliance

The future of regulatory compliance is under scrutiny as President-elect Donald Trump's administration continues the transition process. Also in recent GRC news: Hackers demanded ransom after disabling San Francisco's transportation system, 'dronejacking' could become the next security issue and...

October 20, 2016  2:30 PM

GRC roundup: UK intelligence agencies’ data collection efforts deemed illegal

Christian Stafford Christian Stafford Profile: Christian Stafford
Compliance, Data privacy, Facebook, personal data, privacy, Privacy Shield, regulatory compliance, UK

Government intrusion of data privacy continues to be a global issue, as a British court recently ruled that UK security agencies illegally collected citizens' data for 17 years. Also in recent GRC news: Facebook joins the list of businesses adopting the


September 8, 2016  2:34 PM

Apple tax troubles: EU says Apple owes Ireland $14.5B in unpaid taxes

Christian Stafford Christian Stafford Profile: Christian Stafford
"Apple Inc.", 2016 elections, Apple, cybersecurity, Data breach, Data privacy, Dropbox, Hack

The E.U. has ordered Ireland to collect more than $14B in taxes from Apple that, according to the E.U., have gone unpaid for years. Also in recent GRC news, state voter registration system breaches continue to highlight vulnerabilities in the U.S. election process and Dropbox finally confirmed more...


August 15, 2016  1:08 PM

Bitcoin hack leaves investors apprehensive

Christian Stafford Christian Stafford Profile: Christian Stafford
Bitcoin, Data privacy, Data-security, Hack, HIPPA, Pokemon GO, privacy, Security, Tinder

Investors are nervous about bitcoin's future value after Bitfinex, one of the world's "big four" bitcoin exchanges, was hacked and had nearly $65 million worth of bitcoins stolen. Also in...


July 28, 2016  1:24 PM

Privacy Shield gets regulators’ stamp of approval

Fran Sales Fran Sales Profile: Fran Sales
Data access, Data privacy, Data transfer, GDPR, GRC strategy, HIPAA Compliance, PHI, Privacy Shield, regulatory compliance, SEC

The Privacy Shield data transfer pact finally received the green light from U.S. and EU privacy regulators, and businesses can begin registering to comply with the framework...


July 15, 2016  11:48 AM

Gartner: Cybersecurity control a concern for digital businesses

Mekhala Roy Mekhala Roy Profile: Mekhala Roy
cybersecurity

Digitization requires big changes to companies' strategic processes, and security is no different: In a recent report, Gartner predicts that 60% of digital businesses will experience...


May 26, 2016  1:19 PM

How security standards help companies prioritize data protection

Fran Sales Fran Sales Profile: Fran Sales
Authentication, Consumer data, Data security standards, GRC strategy, nist, Privacy and security, regulatory compliance, SANS, Threat intelligence

In part one of this blog post, John Pescatore, director at the nonprofit cybersecurity training provider SANS Institute, delved into...


May 26, 2016  1:10 PM

Businesses must look beyond regulations for security and privacy guidance

Fran Sales Fran Sales Profile: Fran Sales
Consumer data, Data security standards, GRC strategy, personal data, Privacy and security, regulatory compliance, SANS

Last month, Sens. Richard Burr and Dianne Feinstein from the Senate Select Committee on Intelligence unveiled a draft of the Compliance with Court Orders Act of 2016 that would require all technology companies -- from mobile device manufacturers to application makers -- to comply with court orders...


May 5, 2016  9:12 AM

PCI DSS 3.2 multifactor requirement among the version’s biggest changes

Fran Sales Fran Sales Profile: Fran Sales
Blockchain, Compliance, Data security standards, GDPR, grc, IBM, multifactor authentication, PCI compliance, PCI DSS, regulatory compliance, SEC

Details surrounding the updated Payment Card Industry Data Security Standard show that version 3.2 includes new multifactor authentication and encryption requirements. Also in recent GRC news: SEC enforcement actions -- or the lack of them -- are raising concerns about the agency's ability to...


April 28, 2016  12:15 PM

At Google, company culture key is to assuring consumer privacy

Fran Sales Fran Sales Profile: Fran Sales
Compliance, Consumer data, Corporate culture, Data privacy, Data regulations, Google, online privacy, Privacy and security, regulatory compliance

The lack of comprehensive federal privacy legislation leaves not only consumers vulnerable, but also companies frustrated. Many consumers lack information about the many ways their personal data is used, what parties use it, and the ways it could be potentially misused; meanwhile, companies seeking...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: