Compliance

Hello CISO - Episode 10: The CISO Regulation Minefield

Mar 15, 2023 By 1Password In 1Password

You can’t undertake every compliance initiative under the sun, so how do you prioritize? Talk to the right people, understand the ripple effects of each initiative, and know which will harm and which will strengthen security. Hello CISO is a collaboration between Troy Hunt and the people who build the world's most trusted enterprise password manager.

View Video

1Password

Read more about Hello CISO - Episode 10: The CISO Regulation Minefield

Trust Talks with Myke Lyons, CISO - Security, Transparency, and Squids

Mar 13, 2023 By TrustCloud In TrustCloud

Sravish sits down with Myke Lyons to discuss the latest security and GRC trends. Myke shares his thoughts on GRC transformation and how a security questionnaire spoiled his Friday night.

View Video

TrustCloud

Read more about Trust Talks with Myke Lyons, CISO - Security, Transparency, and Squids

ISO27001 Updates: Change is afoot

Mar 13, 2023 By Tripwire Guest Authors In Tripwire

If you blinked, you might have missed it… On October 25th 2022, the new standard for the Information Security Management System, ISO27001 was released. Without fuss, and without fanfare. But, to quote a famous movie, “There was a great disturbance in the force.” ISO27001 is possibly one of the world's best-known standards for Information Security Management because it has broken out of the realms of the cybersecurity industry and into the world of business.

Read Post

Tripwire

Read more about ISO27001 Updates: Change is afoot

The 443 Episode 233 - Here Come The Regulations

Mar 13, 2023 By WatchGuard In WatchGuard

On today's episode, we cover two new sets of cybersecurity regulations, fresh off the heels of the White House's National Cybersecurity Strategy publication, targeting different critical infrastructure sectors in the United States. We'll also cover the latest in nation state activity targeting network connectivity appliances and end with some fun research into an oldie but goodie video game system.

View Video

WatchGuard

Read more about The 443 Episode 233 - Here Come The Regulations

The Compliance-as-a-Service (CaaS) Ultimate Guide

Mar 13, 2023 By Guest In Splunk

Today, many organizations are governed by various types of industry regulations. To name a few: General Data Protection Regulation (GDPR), Health Insurance Portability and Accountability Act (HIPAA) and California Consumer Privacy Act (CCPA). These regulations are subject to regular and complex amendments, and many compliance officers expect proactive compliance from every regulated company.

Read Post

Splunk

Read more about The Compliance-as-a-Service (CaaS) Ultimate Guide

Earning a 4.0: The Shift in PCI Compliance Requirements Is Underway

Mar 13, 2023 By Jenna Waters In CISO Global

PCI 4.0 — the PCI Standards Security Council’s first update since 2018 to the PCI Data Security Standards (PCI DSS) — is a major iteration that shifts away from the traditional point-in-time assessment. Do you remember how an auditor would annually determine the PCI compliance status of a merchant’s or service provider’s system on a specific day in a specific month and assume — somehow — that the snapshot characterized their status all year?

Read Post

CISO Global

Read more about Earning a 4.0: The Shift in PCI Compliance Requirements Is Underway

Why is HIPAA Compliance a Top Priority for Healthcare Administrators?

Mar 11, 2023 By Narendra Sahoo In VISTA InfoSec

HIPAA is a legal healthcare privacy standard passed into law by the Clinton administration. The law standardized how private healthcare information had to be protected and stored by hospitals. In its earliest years of inception, these rules were straightforward. Things have changed considerably. With the digitalization of healthcare records, it’s now easier than ever for patients and hospitals to access records, but it’s also easier for bad actors.

Read Post

VISTA InfoSec

Read more about Why is HIPAA Compliance a Top Priority for Healthcare Administrators?

CPRA Compliance Checklist

Mar 10, 2023 By Ronak Patel In VISTA InfoSec

California Consumer Privacy Act is a data privacy regulation introduced to protect the privacy of personal data and uphold the rights of consumers. So, it is an obligation for organizations to achieve and maintain CCPA Compliance if they are dealing with the personal data of citizens of California. However, now CCPA will soon be replaced with the latest version which is known as the California Privacy Right Act (CPRA).

Read Post

VISTA InfoSec

Read more about CPRA Compliance Checklist

Sick of that Security Questionnaire? Automation is the Answer

Mar 10, 2023 By Richa Tiwari In TrustCloud

Security questionnaires (SQs) are not fun. They’re time-consuming, tedious work and sometimes, they’re the one thing standing between you and a closed deal. Fortunately, the emergence of AI in the security space has resulted in many day-to-day workflows being streamlined – with SQs being one of them. Security questionnaire automation solutions have been on the rise.

Read Post

TrustCloud

Read more about Sick of that Security Questionnaire? Automation is the Answer

Testing and Assessment for High Assurance

Mar 9, 2023 By Tom Miller In SecuritySenses

Tom Miller from AMR CyberSecurity discusses the cyber security testing types and techniques that give systems and products a higher level of assurance.

Read Post