%term

Introducing Cloud Compliance in ARMO Platform!

Feb 19, 2025 By Yossi Ben Naim In ARMO

We are thrilled to announce that Cloud Compliance is now available in ARMO platform, providing security and compliance teams with a powerful way to assess and maintain compliance across their AWS environments. With this new capability, ARMO automatically scans your cloud assets against industry-leading frameworks, ensuring that your cloud security posture aligns with best practices and regulatory requirements.

Read Post

ARMO

Read more about Introducing Cloud Compliance in ARMO Platform!

Automating SOC 2 Application Security with Jit + Drata

Feb 19, 2025 By Jit In Jit

Checking off application security requirements for SOC 2 compliance is often a burden for everyone involved. Security and GRC teams need to manually upload evidence to SOC2 compliance systems like Drata, while development teams suddenly need to use code security scanners that throw wrenches in the SDLC.

Read Post

Jit

Read more about Automating SOC 2 Application Security with Jit + Drata

New capabilities automate inbound questionnaires and demonstrate trust to customers at scale

Feb 19, 2025 By Vanta In Vanta

Today's buyers are doing their homework—they want to know they can trust your business before they commit. According to Vanta’s latest State of Trust report, nearly 65% of companies say their customers, investors, and suppliers increasingly require proof of compliance before making a purchase. ‍

Read Post

Vanta

Read more about New capabilities automate inbound questionnaires and demonstrate trust to customers at scale

NIS2: A Roadmap to Compliance

Feb 18, 2025 By Kroll In Kroll

The deadline for European Union member states to pass the new EU NIS2 regulation into national law was October 17, 2024, yet only a few countries have transposed it into law, leaving others lagging behind, with regulations in draft or public consultation phases, or not at all. In the absence of certainty for firms (or what NIS2 calls entities), confusion is understandable, but steps can be currently taken considering what we already know.

Read Post

Kroll

Read more about NIS2: A Roadmap to Compliance

Who needs to comply with DORA? All your questions answered

Feb 18, 2025 By Vanta In Vanta

The Digital Operational Resilience Act (DORA) has been developed to protect the financial sector, which is particularly vulnerable to cyberattacks. According to the IMF’s 2024 Global Financial Stability Report, the number of cyberattacks has progressively increased since 2004, and nearly 20% of these attempts target financial institutions. DORA serves as a regulatory measure in the European Union (EU) to improve cybersecurity and operational resilience of organizations in the financial sector.

Read Post

Vanta

Read more about Who needs to comply with DORA? All your questions answered

Building a smarter retrieval system: Lessons from Vanta AI

Feb 18, 2025 By Vanta In Vanta

At Vanta, we power a suite of AI products that enable thousands of customers worldwide to make critical business decisions. These products rely on the ability to quickly search through millions of customer documents to surface relevant information and drive accurate outcomes. ‍ Building a retrieval system capable of handling this scale and complexity was no small feat. Along the way, we learned valuable lessons that we’re excited to share.

Read Post

Vanta

Read more about Building a smarter retrieval system: Lessons from Vanta AI

Building a Sustainable PCI DSS 4.0 Compliance Culture

Feb 18, 2025 By Craig Searle In Trustwave

The Payment Card Industry Data Security Standard (PCI DSS) has long been recognized as the gold standard for payment security, establishing rigorous protocols for organizations that handle credit and debit card data. Designed to bolster defenses and minimize the risk of costly data breaches, PCI DSS is now poised for a major evolution. With the introduction of PCI DSS 4.0, new compliance requirements will become mandatory starting March 31, 2025.

Read Post

Trustwave

Read more about Building a Sustainable PCI DSS 4.0 Compliance Culture

Navigating third-party risk assessments in the digital era: A technology leader's perspective

Feb 18, 2025 By Tejas Ranade In TrustCloud

These days, businesses lean heavily on third-party vendors to boost efficiency and bring fresh ideas to the table. But with that reliance comes risk — from data breaches to compliance issues to disruptions that can ripple through your entire operation. That’s why it’s so important for technology leaders to put strong Third-Party Risk Assessments (TPRAs) in place.

Read Post

TrustCloud

Read more about Navigating third-party risk assessments in the digital era: A technology leader's perspective

How does DORA impact UK entities: Key implications to consider

Feb 17, 2025 By Vanta In Vanta

The Digital Operations Resilience Act (DORA) is a new regulation aimed at improving the cybersecurity and operational stability of the EU's financial sector, especially regarding risks related to information and communications technology (ICT). It applies to organizations in the financial industry, requiring them to reassess and adapt their security posture to DORA’s stringent requirements.

Read Post

Vanta

Read more about How does DORA impact UK entities: Key implications to consider

The Dangers of Outdated Social Media Content

Feb 17, 2025 By SecuritySenses In SecuritySenses

Social media now forms a crucial part of the daily operations of our existence. The social media platforms Facebook, Instagram and Twitter enable users to distribute life updates together with pictures and video content to their social network. User activity on social media leaves virtual records of life history that exist digitally without any set expiration date. Unmanaged old social media content creates multiple risks that affect both reputation and professional standing, as well as legal compliance.

Read Post