Security News
OneTrust announced it has completed the acquisition of ethics and compliance leader Convercent. The Convercent technology, 150 employees, 750 customers, and global CONVERGE community will become core to the ethics and compliance offering.
Styra announced new compliance packs for its Declarative Authorization Service, which include MITRE ATT&CK Matrix for enterprise covering cloud-based techniques, and CIS Kubernetes Benchmarks, to ease collaboration between security and DevOps teams. These two new turnkey compliance packs consist of best practices from the OPA community, and are the latest additions to the Styra compliance pack library, which includes PCI DSS 3.2, Admission Control Best Practices and Kubernetes Pod Security Policies.
The report highlights trends in open source usage within commercial applications and provides insights to help commercial and open source developers better understand the interconnected software ecosystem they are part of. It also details the pervasive risks posed by unmanaged open source, including security vulnerabilities, outdated or abandoned components, and license compliance issues.
New research from FICO highlights the key challenges North American fraud and financial crime teams faced amidst the COVID-19 pandemic. 68 percent of senior executives said that remote working had a major impact on maintaining effective fraud and financial crime prevention functions within their organizations, during the past 12 months.
This agreement brings Semafone into the Avaya ecosystem of alliances, with the goal of helping contact center customers solve the complex security and compliance challenges faced as they embrace a work from anywhere model. The integration of Semafone's, DevConnect certified, secure payment technology with Avaya OneCloud enterprise Session Border Controller, enables Cardprotect Voice+ to be deployed and used across all global Avaya OneCloud contact center solutions.
The reason? While many mission-critical cloud applications like Salesforce have security functionality built-in, they don't consider the levels of customization and complexity that organizations introduce while implementing these solutions. Security configurations: One of the most critical focus areas for Salesforce security is proper configurations.
Even though the model is tiered, organizations will expend a significant effort to ensure they align with the compliance level appropriate for their contracts. This is why one XDR provider has created a new guide to demonstrate how it helps organizations achieve CMMC compliance.
VMware increases visibility, enables compliance and enhances security for containerized applications
The new solution will help increase visibility, enable compliance and enhance security for containerized applications from build to production in public cloud and on-premises environments. The solution provides continuous cloud-native security and compliance to better secure applications and data wherever they live.
Integrating Convercent into OneTrust further enhances the platform's foundation of trust through advanced ethics and compliance capabilities. With a team of 150 ethics and compliance experts, Convercent brings unparalleled experience in managing the world's most complex and advanced global ethics programs, including Airbnb, Under Armour, Kimberly-Clark, and TimeWarner.
Security teams need to manage these vulnerabilities to protect the data from a cyber-attack and ensure compliance with the latest data privacy regulations, such as the General Data Protection Regulation or the California Privacy Rights Act. The key to any data privacy compliance is proper data protection because under these laws, consumers retain the right to deny and revoke the collection of their data.