Security News

SecureTrust launches cloud-based PCI compliance and risk mitigation platform
2020-05-11 02:30

SecureTrust, a division of Trustwave, announced SecureTrust PCI Manager, a cloud-based platform delivering Payment Card Industry compliance validation and enhanced risk mitigation for acquiring banks and merchant service providers. "SecureTrust PCI Manager helps our merchants achieve PCI compliance through a process that drives accuracy and is less time consuming, giving our merchants more time to focus on growing their business and enhancing the customer experience," stated Robyn Mitchell, chief compliance officer at North American Bancard.

Accenture acquires NIKE Group to enhance RegTech and compliance capabilities for clients in Italy
2020-05-04 23:30

NIKE Group's data-driven approach and compliance platform help clients monitor new regulatory requirements and assist with compliance. The acquisition enhances Accenture's RegTech and compliance capabilities for clients in Italy and across Europe.

Despite spending more on compliance, businesses still have basic IT weaknesses
2020-05-04 04:00

Specifically, as businesses spend tens of millions on compliance, over 90 percent have fundamental IT weaknesses that leave them vulnerable and potentially non-compliant. Most businesses have hired new talent, invested in workforce training and introduced new software or services to ensure continued compliance.

A-LIGN A-SCEND 2.0: Enabling an anytime, anywhere approach to compliance for anyone
2020-05-01 00:30

A-LIGN, a technology-enabled security and compliance partner trusted by more than 2,400 companies, announced the launch of A-SCEND 2.0, its propriety compliance management platform that enables an anytime, anywhere approach to compliance-for anyone. A-SCEND 2.0 centralizes evidence collection and standardizes compliance requests, making it possible to consolidate multiple audits at once.

GDPR Compliance Site Leaks Git Data, Passwords
2020-04-27 21:15

The website, GDPR.EU, is an advice site for organizations that are struggling to comply with the General Data Protection Regulation laws that were imposed by the EU in 2018. "However, the irony of a EU-funded web site about GDPR having security issues isn't lost on us."

Third-party compliance risk could become a bigger problem
2020-04-27 04:30

Since the onset of COVID-19, more than half of legal and compliance leaders believe that cybersecurity and data breach is the most-increased third-party risk their organizations face, according to Gartner. Which third-party compliance risk has increased the most at your organization as a result of COVID-19?

Five best practices for achieving and maintaining SOC 2 compliance
2020-04-24 05:30

SOC 2 compliance is evaluated by independent third-party auditors who assess a company's ability to comply with these core principles. SOC 2 was developed by the American Institute of CPAs and designed specifically for service providers that store customer data in the cloud, meaning virtually every SaaS company operating today should consider achieving SOC 2 compliance.

Neustar launches services aimed at fulfilling stringent CCPA compliance standards
2020-04-17 01:45

The Neustar Identity Verification for CCPA and Neustar Identity Resolution for CCPA services enable organizations to fulfill CCPA requests with assurance of risk mitigation in terms of data breaches or fraud as well as non-compliance. While the act provides certain benefits and protections for consumers, it does introduce some risk: fraudsters may make CCPA requests in an effort to acquire sensitive personal information, and organizations with siloed consumer data may unwittingly find themselves out of compliance - and subject to fines - in cases of unmerged or outdated records.

Workiva launches W for ESEF to help European companies simplify compliance
2020-04-09 02:30

Workiva, provider of the world's leading connected reporting and compliance platform, launched W for ESEF, a focused solution to help European companies simplify compliance with the European Securities and Markets Authority requirements for European Single Electronic Format reporting. W for ESEF - which is available in 23 European languages - offers a distinct subset of functionality for companies that want a targeted ESEF solution.

Encryption is finally being used primarily to protect personal data rather than just for compliance
2020-04-08 04:00

Traditionally compliance with regulations was the top driver for deploying encryption, but has dropped in priority since 2017, indicating that encryption is transitioning from a requirement to a proactive choice to safeguard critical information. With the proliferation of data from digital initiatives, cloud use, mobility, IoT devices and the advent of 5G networks, data discovery continues to be the biggest challenge in planning and executing a data encryption strategy, with 67% of respondents citing this as their top concern.