IT Compliance Advisor:

Security


July 9, 2015  9:25 PM

SEC commissioner calls for expanded Reg SCI; PCI SCC updates P2P standard

Fran Sales Fran Sales Profile: Fran Sales
Compliance, cybersecurity, Data Encryption, Dodd-Frank, Financial regulations, grc, PCI, PCI DSS, regulatory compliance, SEC

SEC commissioner Luis Aguilar strongly urged his colleagues at a cybersecurity conference last month to push Reg SCI up on their priority lists, particularly in terms of widening the regulation's coverage. Also in the news: The PCI Council updates its peer-to-peer encryption standard; the SEC...

June 11, 2015  4:51 PM

U.S. government breach could have accessed private citizens’ data

Fran Sales Fran Sales Profile: Fran Sales
Apple, Apple iOS, cybersecurity, Data breach, Data privacy, Hack, Safe Harbor

U.S. officials say the recent hack of government computer systems affects 4 million current and former federal employees, but the breach could have impacted private citizens, too. Also in the news: Apple hyped new privacy protections as it updates Siri, while U.S. and EU officials moved closer...


June 5, 2015  5:11 PM

Data as currency: Balancing risk vs. reward

Ben Cole Ben Cole Profile: Ben Cole
Compliance, Data-security, Information governance

(This blog post was written by Jeff Whited, senior manager of education development at ARMA International.) By leveraging big data as an asset, organizations are tapping new business efficiencies and revenue streams. Credit card companies, for instance, sell data on customers' buying...


May 28, 2015  1:31 PM

Wall Street, small banks still plagued by regulatory compliance enforcement

Fran Sales Fran Sales Profile: Fran Sales
Banking industry, Chief Compliance Officer, Compliance, Dodd-Frank, Financial fraud, Financial industry, Financial regulations, grc, regulatory compliance

If recent headlines are any indication, Wall Street banks and other financial institutions continue to garner poor marks when it comes to regulatory compliance: Earlier this month, several major global banks pleaded guilty to federal accusations regarding the rigging of foreign exchange rates. Also...


April 22, 2015  4:30 PM

Lawmakers race to pass cybersecurity bill; NSA wants front door into encrypted devices

Fran Sales Fran Sales Profile: Fran Sales
cybersecurity, Cybersecurity legislation, Data Encryption, Hackers, Health IT, Mobile encryption, NSA, NSA Data Collection

Much to the chagrin of privacy advocates, U.S. legislators have been pushing to pass a bill to improve cyberthreat intelligence sharing before discussing National Security Agency (NSA) surveillance reforms. In other recent news: Privacy proponents are also up in arms about an NSA proposal that...


March 11, 2015  5:51 PM

Will weak incentives for security investment force regulatory intervention?

Fran Sales Fran Sales Profile: Fran Sales
CIO, Compliance, Consumer data, cybersecurity, Data breach, Data privacy, Data protection, Forrester, FTC, Governance, grc, GRC strategy, Information security, personal data, Risk assessment, Risk management

Data breaches have been intensifying in recent years, but security expert Benjamin Dean argues that many companies still lack motivation to invest in more robust information security. Also in headlines from the past few weeks: The U.S. and European governments set their sights on data processing...


February 26, 2015  3:28 PM

AT&T’s high-speed service comes with a privacy fee; Google bows to privacy spot checks

Fran Sales Fran Sales Profile: Fran Sales
AT&T, Data privacy, Data-security, Encryption, Fiber optic networking, Google, samsung, Smart machines

AT&T's has begun rollout of a fiber-optic Internet service that furnishes customers with high-speed access, but they must pay an extra monthly charge if they want to keep their browsing habits private. In other data privacy news, Google accepted the terms of an agreement drawn up by an Italian...


January 20, 2015  7:04 PM

Website offers hackers for hire; Obama pushes new data privacy laws

Fran Sales Fran Sales Profile: Fran Sales
Asset management, CIO, cybersecurity, Cybersecurity legislation, Data privacy, Data protection, grc, Hackers, Identity theft, IT Governance, Privacy rights

Hackers may have found a way to commercialize their services as individuals begin to seek "hackers for hire" to carry out low-profile cyberintrusions. In other recent governance, risk and compliance (GRC) news, President Barack Obama has introduced proposals to strengthen companies' customer data...


January 7, 2015  7:52 PM

More U.S. firms look to hack back after Sony data breach

Fran Sales Fran Sales Profile: Fran Sales
CIO, Cyberattacks, cybersecurity, Data breach, FBI, grc, Hackers, Network Intrusion, Sony, Threat intelligence, Two factor authentication

Business cybersecurity -- or the lack thereof -- continued to make headlines in the past few weeks as more U.S. private-sector firms consider counteroffensive tactics against attackers. Also in cybersecurity news, North Korea slammed new U.S. sanctions in response to the Sony hack, and a new report...


December 23, 2014  3:49 PM

Obama plans response against North Korea for Sony Pictures hack

Fran Sales Fran Sales Profile: Fran Sales
backdoors, CIO, Cyberattacks, Cybercrime, cybersecurity, Hackers, Hacking, Information security, Microsoft, privacy, Sony

President Barack Obama declared that the U.S. government will respond to North Korea's actions after the FBI announced that the nation-state was behind last month's calamitous cyberattack against Sony Pictures. In other recent IT security and privacy news, U.S. Senator Ron Wyden introduced a bill...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: