Security News

PlusOne Solutions launched its open Application Programming Interface for Customers looking to create a unified method for managing their Service Network compliance data and compliance programs. The PlusOne Solutions API allows for the communication of multi-layered compliance information including Contractor, sub-contractor, and contractor employee levels to ensure a full view of the network's compliance and risk information.

Thirteen years, one institutional investor and two acquisitions later, it offers a unified platform that helps general counsel and chief legal officers manage challenges related to e-discovery, data privacy compliance obligations, Data Subject Access Rights, digital forensic investigation and so on. Legal plays a critical role in ensuring that all compliance obligations are met, and overall risk to the organization is mitigated.

VigiTrust launched new Asset Register, Risk Register and Dynamic Assessment features on its flagship platform, VigiOne. The platform now expands its reach to cover the steps before compliance management: namely, answering the questions, "What are the risks my organization faces, and what can I do about those risks?" to help create a Continuous Compliance Program.

Belkin announces an entirely new portfolio of Secure KVMs designed for National Information Assurance Partnership Protection Profile 4.0 compliance. Belkin's portfolio consists of the Universal 2nd Generation Secure KVMs as well as the Modular Series of Secure KVMs. Combined, the two platforms give government agencies an unprecedented level of flexibility in designing their environments and equipping employees with the exact value and functionality needed for the mission.

Security is important in any organization, but getting employees to follow protocol can be a challenge. Oh, these people who are using insecure passwords, clicking open phishing emails and installing malicious apps-why don't they understand? We'll show them, right? If you don't follow the security protocols, you're in for it.

Security is important in any organization, but getting employees to follow protocol can be a challenge. Tom Merritt offers five reasons why using fear-based motivation techniques is not ideal.

CyberSheath launched its Managed IT Services for Defense Contractors to ensure compliance with the new cybersecurity standards for commercial contractors of the United States government. The managed services include a Shared Security Compliance Framework to ensure compliance for both DFARS Clause 252.204-7012 / NIST SP 800-171 and the new DFARS 252.204-7019-7021 CMMC requirements.

To address these challenges, NICE has introduced NTR-X, a fully-integrated, cloud-ready omnichannel compliance recording and assurance solution. Building on NICE Trading Recording, the most widely deployed trading compliance recording platform in the financial services industry, NTR-X captures all modalities of regulated employee communications - traditional, unified and mobile - in a single platform.

As companies migrate to the cloud to take advantage of its scalability and flexibility, many don't fully realize how this move will affect their compliance with cybersecurity and privacy requirements mandated by laws and standards such as SOX, CCPA, SOC 2, PCI DSS or ISO 27001. While the cloud offers significant freedom, it also creates new pain points around achieving compliance with these requirements, especially when first moving compliant workloads from on-premises data centers to the cloud.

Stealthbits unveiled its new Data Privacy Engine that connects user identities with the locations of their personal data to elevate data access governance. "Our new Data Privacy Engine is the first solution to proactively understand how data is connected to identities, enabling near-instantaneous answers to DSARs. This means our customers can address both data security and data privacy simultaneously, which we believe are two sides of the same coin."