Security News

LexisNexis Financial Crime Digital Intelligence reduces digital financial crime and compliance risk
2021-06-21 08:12

LexisNexis Financial Crime Digital Intelligence is a new solution that leverages digital identity data to transform financial crime compliance workflows. LexisNexis Financial Crime Digital Intelligence provides a dedicated and customized workspace including purpose-built financial crime compliance capabilities such as access to additional sanctions risk features, storage capacity and user role configuration.

73% of enterprises suffer security and compliance issues due to internal misalignment
2021-06-18 05:00

According to Enterprise Management Associates and BlueCat's recently published research report, nearly 3 in 4 enterprises have suffered security or compliance issues in the past year as a direct result of collaboration challenges between the cloud and networking teams. The research, based on a survey of 212 networking and cloud professionals, found that the consequences of dysfunction between these teams extend far past the security realm.

Strengthen Your Password Policy With GDPR Compliance
2021-06-17 01:06

When you're implementing a password policy for your AD with GDPR compliance in mind it's a good idea to use a 3-rd party tool to help your password policy reach your entire end-user directory. During a password change in Active Directory, this service will block and notify users if the password they have chosen is found in a list of leaked passwords and provides dynamic feedback for password compliance.

Helping security teams respond to gaps in security and compliance programs with Qualys CSAM
2021-06-01 05:00

While traditional IT teams and inventory tools provide an IT view of inventory, software support, and licensing, security teams are looking for the security context of assets such as assets that are not running security tools, detection of unauthorized software, internet visibility, and more. Security tools like EDR help secure assets, but do not let security teams know which critical assets are not running EDR, or if databases are visible from the internet? All security teams have defined authorized and unauthorized software policies.

Happy birthday GDPR: IoT impact and practical tips for compliance
2021-05-25 08:29

The upcoming physical return to the office is also set to bring the influx of IoT devices that may be installed on networks as part of new COVID-19 workplace compliance policies. Some of these devices may collect large quantities of personal data that needs to be protected and is subject to the GDPR. GDPR Privacy by Design.

CoreStack compliance and governance solution now available in the Microsoft Azure Marketplace
2021-05-18 23:30

CoreStack announced the availability of its CoreStack AI-powered, multi-cloud compliance and governance solution in the Microsoft Azure Marketplace, an online store providing applications and services for use on Azure. CoreStack customers can now take advantage of the productive and trusted Azure cloud platform, with streamlined deployment and management.

What contractors should start to consider with the DoD’s CMMC compliance standards
2021-05-06 05:00

While the CMMC doesn't completely replace the National Institute of Standards and Technology SP 800-171, it does include and build on these standards for a clear purpose. Enter the CMMC. With this new regulation, the DoD establishes five levels of cybersecurity preparedness, ranging from level one to level five.

The VC View: Cloud Security and Compliance
2021-05-05 10:02

Cloud security is more topical than ever when considering all the fun things that have happened in 2021 with security startups! Before talking about innovation and startups though, let's talk about a brief history of cloud security especially public cloud.

AuditBoard relaunches as CrossComply, streamlines compliance management across the enterprise
2021-04-21 01:00

CrossComply is one of four solutions available within AuditBoard's integrated GRC platform, which streamlines and simplifies audit, risk, and compliance programs for large organizations. Gartner recently cited IT Governance as a top risk in 2021, and a March 2021 AuditBoard market survey found that 47% of teams are still managing IT and information security compliance with manual processes and spreadsheets, leaving themselves vulnerable to errors, gaps, and risks.

ioXt Alliance expands its Compliance Program to bring transparency to mobile apps and VPNs
2021-04-19 00:00

The ioXt Alliance announced that it is expanding its ioXt Compliance Program with a new mobile application profile with added requirements for VPN applications. Defined collaboratively by technology companies such as Google and Amazon, in partnership with security labs, NowSecure, NCC Group, DEKRA, Onward Security and 7layers, and aligned with the initiatives set forth by VPN Trust Initiative, these new security standards for the mobile app and VPN markets will bring transparency and visibility to consumer and enterprise buyers, to advance security in the IoT industry as a whole.