%term

How Vanta uses Okta for identity and access management

Aug 16, 2023 By Vanta In Vanta

In this series, you’ll hear directly from Vanta’s own Security, Enterprise Engineering, and Privacy, Risk, & Compliance Teams to learn about the team’s approach to keeping Vanta secure. We’ll also share some guidance for teams of all sizes — whether you’re just getting started or looking to uplevel your operations.

Read Post

Vanta

Read more about How Vanta uses Okta for identity and access management

Trust Talks with Ken Leeser, CISO

Aug 16, 2023 By TrustCloud In TrustCloud

Sravish sits down with Ken Leeser to discuss the latest security and GRC trends.

View Video

TrustCloud

Read more about Trust Talks with Ken Leeser, CISO

New SEC cybersecurity rules: Five things every public company CISO should do now

Aug 15, 2023 By Jake Olcott & Noah Stone In BitSight

By now you’ve heard about the new cybersecurity rules from the U.S. Securities and Exchange Commission (SEC) requiring public companies to report material cybersecurity incidents and disclose critical information related to cybersecurity risk management, expertise, and governance. Companies will be required to disclose risks in their annual reports beginning on December 15, 2023.

Read Post

BitSight

Read more about New SEC cybersecurity rules: Five things every public company CISO should do now

AI's Role in the Next Financial Crisis: A Warning from SEC Chair Gary Gensler

Aug 14, 2023 By Stu Sjouwerman In KnowBe4

TL;DR - The future of finance is intertwined with artificial intelligence (AI), and according to SEC Chair Gary Gensler, it's not all positive. In fact, Gensler warns in a 2020 paper —when he was still at MIT—that AI could be at the heart of the next financial crisis, and regulators might be powerless to prevent it. AI's Black Box Dilemma: AI-powered "black box" trading algorithms are a significant concern.

Read Post

KnowBe4

Read more about AI's Role in the Next Financial Crisis: A Warning from SEC Chair Gary Gensler

New in Vanta | July 2023

Aug 14, 2023 By Vanta In Vanta

In July, we released Private Integrations which allow you to connect any app to Vanta, plus 30 new integrations, additional customization for pre-built Vanta content, and more: ‍ ‍ ‍

Read Post

Vanta

Read more about New in Vanta | July 2023

Teleport Achieves ISO 27001, HIPAA, and SOC 2 Compliance Milestones

Aug 11, 2023 By Reed Loden In Teleport

We're thrilled to announce that Teleport has recently achieved critical compliance milestones, marking another significant step forward in our commitment to providing highly secure and reliable cloud-based services. We are pleased to inform you that Teleport has successfully achieved ISO 27001 certification, is now HIPAA compliant, and has also expanded our SOC 2 report coverage with the addition of Confidentiality and Availability trust service criteria.

Read Post

Teleport

Read more about Teleport Achieves ISO 27001, HIPAA, and SOC 2 Compliance Milestones

Shared Responsibility Model: Breakdown & Best Practices

Aug 11, 2023 By Michael Marrano In TrustCloud

There is a widespread misunderstanding regarding cloud services, particularly in relation to Software as a Service (SaaS). Many organizations mistakenly believe that once they migrate to the cloud, the responsibility for all aspects of security and data protection rests solely with the SaaS provider. This misconception creates a false sense of security, which can be detrimental.

Read Post

TrustCloud

Read more about Shared Responsibility Model: Breakdown & Best Practices

ISO 27001 Compliance for SaaS | SOC2 vs ISO | Girish Redekar (CEO & Co-Founder, Sprinto)

Aug 10, 2023 By Indusface In Indusface

Overview: In this podcast, Girish Redekar (CEO and Co-Founder, Sprinto), shares with Venky the most effective ways to implement the ISO 27001 framework for organizations to attain comprehensive security, rather than solely obtaining a certification. He also discusses similarities & differences between SOC2 and ISO 27001, and suggests that organizations can streamline their security program to achieve multiple certifications more efficiently.

View Video

Indusface

Read more about ISO 27001 Compliance for SaaS | SOC2 vs ISO | Girish Redekar (CEO & Co-Founder, Sprinto)

GDPR Compliance Audit - Evaluating Your Data Protection Practices

Aug 10, 2023 By VISTA InfoSec In VISTA InfoSec

The GDPR is a regulation established by the European Union to provide guidelines for the collection and processing of personal data within the EU. A GDPR compliance audit is an independent and systematic evaluation of an organization’s adherence to these guidelines. The goal of such an audit is to help organizations meet their obligations under the GDPR and identify areas for improvement.

View Video

VISTA InfoSec

Read more about GDPR Compliance Audit - Evaluating Your Data Protection Practices

Impact of Cyber Attacks on Small Businesses

Aug 8, 2023 By Ronak Patel In VISTA InfoSec

Your business is at high risk if you have no security measures. A cyber attack can cause devastating financial damage to your business, including legal liabilities. Cyberattacks can result in lasting adverse repercussions on the reputation of your network security, as clients and customers can lose faith in your business if their personal data gets leaked.

Read Post