Security News

As of March 31, 2022, the findings uncovered that 90% of companies are not fully compliant with CCPA and CPRA Data Subject Access Request requirements. Further, 95% of companies are using error prone and time consuming manual processes for GDPR DSAR requirements.

There are several factors contributing to compliance leader burnout but below are the top three to recognize, along with ways that companies and their compliance talent can effectively address these moving forward. If traditional methods of compliance are used, the compliance leader has no actual oversight on whether those controls are running.

In this video, Craig Lurey, CTO and Co-Founder of Keeper Security, talks about the new secure add-on to the Keeper enterprise platform, called Compliance Reports. Keeper Compliance Reports allow Keeper Administrators to monitor and report the access permissions of privileged accounts across the entire organization, in a zero-trust and zero-knowledge security environment.

Transcend released the results of its latest survey of technology decision makers, which assessed their readiness for Apple's in-app deletion requirements for iOS apps that offer account creation. Less than a quarter of respondents understand the full scope of Apple's in-app deletion requirements, despite clarifications from Apple.

Another reason to start with the CIS Controls? They work. Want to track your implementation of the Controls and your compliance with those mapped frameworks? The CIS Controls Self Assessment Tool, available exclusively to CIS SecureSuite Members, can help with that.

While it is impossible to guarantee 100 percent protection on public Wi-Fi, there are certain measures that can be taken to significantly reduce the risk of cyberthreats over the network and most countries started forcing Wi-Fi providers to include cybersecurity protection along with the internet in order to make them comply with the law. Web filtering is considered to be an all-in-one package solution that protects users from cyber-threats while filtering the internet from unwanted content.

Standards compliance startup Secureframe, launched in 2020, this week announced a $56m in Series B funding, led by Accomplice Ventures and coming less than a year after the company raised $18m. Shrav Mehta, founder and CEO of the New York City-based company, wrote in a blog post that the latest funding round "Is a major milestone for our fast-growing company and a signal to the market that automation is the future of security and compliance. This new financing underscores the tremendous demand for solutions that streamline the compliance process and help organizations achieve best-in-class security." "New regulations, emerging security frameworks, and rising customer expectations put significant strain on growing companies, and too many organizations are trying to keep up using disconnected security tools and manual compliance reviews," Mehta wrote.

Having SOC 2 compliance means you have implemented organizational controls and practices that provide assurance for the safeguarding and security of client data. After beginning our SOC 2 journey we realized that we did not have a great way to track the reasoning behind a required emergency change, and this was required for our SOC 2 audit.

Only 11% of companies are able to fully meet CCPA requirements, especially when managing Data Subject Access Requests, according to a CYTRIO research. The research also showed a disconnect in compliance with 44% of companies not providing any mechanism for consumers to exercise their data rights despite stating they needed to comply with CCPA in their privacy policies.

Compliance has become so demanding in cloud deployments that many organizations have moved from manual security checks to procedures based on continuous automated monitoring and compliance, notes Lucy Huh Kerner, Red Hat's Director of Security Global Strategy and Evangelism. Continuous security and compliance are how these issues can be prevented for better security and not merely for "Check-the-box" compliance.