Security News
VigiTrust launched new Asset Register, Risk Register and Dynamic Assessment features on its flagship platform, VigiOne. The platform now expands its reach to cover the steps before compliance management: namely, answering the questions, "What are the risks my organization faces, and what can I do about those risks?" to help create a Continuous Compliance Program.
Belkin announces an entirely new portfolio of Secure KVMs designed for National Information Assurance Partnership Protection Profile 4.0 compliance. Belkin's portfolio consists of the Universal 2nd Generation Secure KVMs as well as the Modular Series of Secure KVMs. Combined, the two platforms give government agencies an unprecedented level of flexibility in designing their environments and equipping employees with the exact value and functionality needed for the mission.
Security is important in any organization, but getting employees to follow protocol can be a challenge. Oh, these people who are using insecure passwords, clicking open phishing emails and installing malicious apps-why don't they understand? We'll show them, right? If you don't follow the security protocols, you're in for it.
Security is important in any organization, but getting employees to follow protocol can be a challenge. Tom Merritt offers five reasons why using fear-based motivation techniques is not ideal.
CyberSheath launched its Managed IT Services for Defense Contractors to ensure compliance with the new cybersecurity standards for commercial contractors of the United States government. The managed services include a Shared Security Compliance Framework to ensure compliance for both DFARS Clause 252.204-7012 / NIST SP 800-171 and the new DFARS 252.204-7019-7021 CMMC requirements.
To address these challenges, NICE has introduced NTR-X, a fully-integrated, cloud-ready omnichannel compliance recording and assurance solution. Building on NICE Trading Recording, the most widely deployed trading compliance recording platform in the financial services industry, NTR-X captures all modalities of regulated employee communications - traditional, unified and mobile - in a single platform.
As companies migrate to the cloud to take advantage of its scalability and flexibility, many don't fully realize how this move will affect their compliance with cybersecurity and privacy requirements mandated by laws and standards such as SOX, CCPA, SOC 2, PCI DSS or ISO 27001. While the cloud offers significant freedom, it also creates new pain points around achieving compliance with these requirements, especially when first moving compliant workloads from on-premises data centers to the cloud.
Stealthbits unveiled its new Data Privacy Engine that connects user identities with the locations of their personal data to elevate data access governance. "Our new Data Privacy Engine is the first solution to proactively understand how data is connected to identities, enabling near-instantaneous answers to DSARs. This means our customers can address both data security and data privacy simultaneously, which we believe are two sides of the same coin."
Uptycs announced its advanced cloud security and compliance offering. The Uptycs Security Analytics Platform now provides its customers security and compliance for their AWS deployments.
Drata helps companies streamline their SOC 2 compliance through continuous, automated control monitoring and evidence collection, resulting in lower costs and time spent preparing for annual audits. "Drata is a team of seasoned entrepreneurs and engineers who have a successful track record and have worked together for more than 10 years. The platform they developed truly delivers on the promise of automation to reduce the burden of SOC 2 compliance and sets companies up for continuous monitoring which is coming in the future," said Ted Wang, Partner at Cowboy Ventures.