Security News

Why 40% of privacy compliance tech will rely on AI by 2023
2020-02-25 15:28

With privacy laws and data breaches coming into focus in 2019, security leaders are looking for new ways to keep personal information safe. The heightened conversation around data security has resulted in mounting pressure on privacy professionals, who are ultimately responsible for keeping an organization's data secure.

Anitian enhances its Cloud Security Platform with compliance documentation automation
2020-02-25 01:00

Anitian, a leading cloud security and compliance automation provider, announced Documentation Automation, an enhancement to its Cloud Security Platform that automates documentation for the most stringent compliance standards. "The automation of security and compliance documentation represents a final frontier in automating a company's journey to the cloud," said Andrew Plato, Anitian Chairman and CEO. "What used to take 12 to 18 months and teams of people to complete can now be done in days, even hours, with Anitian's Vision Portal."

Compliance: Veritas tool adds intelligence and analysis to data supervision
2020-02-21 15:24

Veritas Technologies has rolled out a compliance tool to help clients ensure all critical data is identified, pinpointed, and protected in regulated industries like financial services and healthcare. In a blog post this week, the Santa Clara, CA-based company, a leader in data protection and availability, noted the increasing need for data supervision in an environment in which global regulations like GDPR become even more demanding and complex.

Keen to check for 'abnormal' user behaviours? Microsoft talks insider risk, AWS imports and compliance at infosec shindig RSA
2020-02-20 14:35

RSA As IBM's crew cancels their hotel rooms, Microsoft's infosec staffers are still set to attend the decades-old RSA conference and pulled the covers off a raft of security releases and previews for the event today. We spoke to Microsoft 365 Senior Director, Alym Rayani, about compliance and insider risk at last year's Ignite event.

Summit 7 prepares Defense and Aerospace Contractors for compliance with the new CMMC regulations
2020-02-20 00:45

Summit 7 Systems, a leading national provider of Cybersecurity Compliance Solutions for the Defense Industrial Base, announced an expansion of their Cybersecurity Practice Area with the addition of new software and services to prepare Defense and Aerospace Contractors for compliance with the new Cybersecurity Maturity Model Certification regulations. The CMMC regulations were created by the U.S. Department of Defense to strengthen Cybersecurity in the supply chain of the Defense Industrial Base, and version 1.0 was released on January 31, 2020.

GDPR Compliance: Should CISO Serve as DPO?
2020-02-14 14:18

A joint report by the International Association of Privacy Professionals and Ernst & Young, published last year, revealed inconsistencies in how companies are implementing the DPO role, including whether the CISO also serves as DPO. When Is DPO Required? While some say it's appropriate for CISOs to serve as DPOs because the roles complement each other, others argue the DPO position should be separate.

GoodData’s data analytics platform now provides immediate CCPA compliance
2020-02-12 02:30

GoodData, a leader in end-to-end analytics solutions, announced that its data analytics platform now provides immediate compliance with the new California Consumer Privacy Act, considered the most stringent consumer data privacy act in the United States. "We are in a new era of data privacy. Companies need to comply with new and tougher laws and better serve their customers by meeting new standards for data privacy," said GoodData CEO, Roman Stanek.

Bringing Outsiders Into Your Compliance Team: Four Considerations
2020-02-11 17:04

Hiring third party investigators to bolster your AML and Compliance team? Here's four things to consider before you pick up the phone. Ensure the third party users have their own group identifiers so a reporting analyst can run reports on their productivity reports to demonstrate the value and efficiency of the third party user.

ThreatStack partners with Tevora to streamline cloud security and compliance initiatives
2020-01-31 01:00

Threat Stack, the leader in cloud security and compliance for infrastructure and applications, announced a partnership with Tevora, a specialized management consultancy focused on cybersecurity, risk, and compliance services. The Threat Stack Cloud Security Platform extends security observability across the cloud management console, host, containers, and application layers to help customers understand the full picture of their cloud environment, quickly respond to incidents, and proactively reduce risk.

NIST Privacy Framework 1.0: Manage privacy risk, demonstrate compliance
2020-01-20 05:30

The publication also provides clarification about privacy risk management concepts and the relationship between the Privacy Framework and NIST's Cybersecurity Framework. The NIST Privacy Framework is not a law or regulation, but rather a voluntary tool that can help organizations manage privacy risk arising from their products and services, as well as demonstrate compliance with laws that may affect them, such as the California Consumer Privacy Act and the European Union's General Data Protection Regulation.