Security News

Why automation is critical for scaling security and compliance
2022-12-09 04:30

This is where automation is critical to scale security and compliance. Automation enables compliance and security standardization.

How compliance leaders can encourage employees to report misconduct
2022-12-08 04:00

As Chief Compliance Officers continue to face challenges in restoring employee misconduct reporting to pre-pandemic levels, there are three strategies they should implement to increase confidence in their processes among employees, according to Gartner. "There are clearly structural challenges that have impaired effective misconduct reporting, ranging from new working models, to higher employee turnover, and increased societal polarization," said Chris Audet, VP, research, in the Gartner Legal, Risk & Compliance practice.

14 PCI Compliance security best practices for your business
2022-11-24 13:38

PCI compliance is a structure based on requirements mandated by the Payment Card Industry Security Standards Council to ensure that all companies that process, store or transmit credit card information maintain a secure operating environment to protect their business, customers and confidential data. The PCI SSC was created by Visa, MasterCard, American Express, Discover and Japan Credit Bureau to administer and manage the PCI DSS. Companies which adhere to the PCI DSS are confirmed PCI compliance and thus trustworthy to conduct business with.

14 PCI compliance security best practices for your business
2022-11-24 10:04

PCI compliance is a structure based on requirements mandated by the Payment Card Industry Security Standards Council to ensure that all companies that process, store or transmit credit card information maintain a secure operating environment to protect their business, customers and confidential data. The PCI SSC was created by Visa, MasterCard, American Express, Discover and Japan Credit Bureau to administer and manage the PCI DSS. Companies which adhere to the PCI DSS are confirmed PCI compliance and thus trustworthy to conduct business with.

Data sovereignty and compliance need help
2022-11-15 09:00

Reader Survey Results Back in September, we asked readers of The Register about data sovereignty. The figure that we initially thought surprising was that 48.1 percent of respondents still have their systems and data in private, on-prem data centres.

Compliance initiatives can advance your organization’s security journey
2022-11-10 05:30

Compliance standards are designed to give organizations a foundational approach to designing their security program while also reassuring third parties that you have met at least a minimal set of security controls. In this Help Net Security video, Christopher Fielder, Field CTO at Arctic Wolf, discusses the common mistakes organizations make in their compliance journeys.

Busting compliance myths
2022-11-09 06:00

This lack of in-house compliance experience and expertise often prompts companies to turn to third-party solutions to streamline the compliance process and act as a liaison with their auditors. Some of the most common compliance myths stem from misnomers and confusing or conflated terminology.

Privacy, compliance challenges businesses face after Roe v. Wade repeal
2022-11-04 05:00

In this Help Net Security video, Rebecca Herold, IEEE member and CEO of Privacy & Security Brainiacs, discusses data, privacy, surveillance, and compliance challenges facing businesses in the wake of the US Supreme Court's repeal of the Roe v. Wade decision, which stated that a clause of the Fourteenth Amendment to the US Constitution provides a "Right to privacy" and, through it, a pregnant woman's right to an abortion. In this day and age, when information about individuals is widely collected and/or inferred via online tracking and ubiquitous real-world surveillance technology, what should businesses do when asked to hand over data about their users and employees.

Consumers care about their data: Learn how to automate privacy and compliance efforts
2022-10-19 19:57

As a result of the increasing concern over consumer data privacy and protection, many government regulations and compliance mandates now focus solely on consumer data protection. Since the inception of these various consumer data privacy compliance acts, global organizations across diverse industries have faced a common challenge in protecting consumer data to remain compliant.

PCI DSS compliance improving but still lags highs
2022-09-08 13:00

While compliance with the PCI Data Security Standard has improved significantly in 2020, it is still well off its 2016 highs, according to the 10th 2022 Verizon Payment Security Report. In response to ever escalating cyberthreats in the payments industry, the PCI Security Standards Council instituted its most ambitious rewrite of the PCI DSS since 2004, the report said.