Data Breach Notifications: Too Complex To Understand

Data Breach Notifications: Too Complex To Understand?

There are letters that no one ever wants to get: any correspondence from the IRS or the notification for jury duty, for example.  Add data breach notifications letter to that list. Not ...
Security Boulevard
Third-Party Risk Assessment Getting Better

Is Third-Party Risk Assessment Getting Better?

 The 2019 “Vendor Risk Management Benchmark Study: Running Hard to Stay In Place” is the fifth annual survey of its kind by the Shared Assessments Program and consulting company Protiviti. The key ...
Security Boulevard

2019 Update on frameworks, standards, and regulations for infosec

At the 2019 BSides Tampa Security conference I did a talk on 2019 Updates on frameworks, standards, and regulations for infosec. Over the last year several new and updated frameworks and regulations ...
Adequacy Agreements, Legislation and Compliance

Adequacy Agreements, Legislation and Compliance in a GDPR World

While Capitol Hill is inundated with proposed privacy legislations from the Data Breach Prevention and Compensation Act (DBPCA), the CLOUD Act and the ENCRYPT Act, organizations the world over are trying to ...
Security Boulevard
Businesses Won't Be Ready for CCPA

Survey: Businesses Won’t Be Ready for CCPA

| | CCPA, Privacy, regulations
In July, I discussed one of the first U.S. responses to GDPR, the California Consumer Privacy Act (CCPA), which is supposed to go into effect Jan. 1, 2020. Tech companies oppose the ...
Security Boulevard
Security Boulevard’s 5 Most Read Stories for the Week

Security Boulevard’s 5 Most Read Stories for the Week, August 13-17

A new week, a new crop of security stories. Last week, lack of user privacy, man-in-the-attack, dumb privacy rules and Intel CPUs vulnerabilities made the headlines. In addition, we discussed how to get ...
Security Boulevard
Dumb Privacy Rules

Dumb Privacy Rules: How Lawyers are Ruining It for Everyone

Father Guido Sarducci, comedian Don Novello’s eccumenical doppleganger, had a routine where he discussed the idea of the “5-minute University,” where he would teach you in five minutes everything you would remember ...
Security Boulevard
Gemalto SafeNet Encryption and Tokenization Solutions

New York State Cybersecurity Law: Encryption Deadline Coming September 3, 2018

Financial Services companies operating in the State of New York have until September 3, 2018 to be in compliance with the new mandates of the New York State Cybersecurity Requirements for Financial ...
2018: Snapshot of the Most Important Worldwide Cybersecurity Laws, Regulations, Directives and Standards

2018: Snapshot of the Most Important Worldwide Cybersecurity Laws, Regulations, Directives and Standards

Are you out of breath from the breakneck pace of cyberattacks since the start of 2018? Throughout the world, nearly daily news reports have been filed detailing the results of incredibly effective ...
GDPR Affects IAM Usage

How GDPR Affects IAM Usage

GDPR is placing a lot of demands on companies to protect the privacy of individuals. But what does that mean for identity management? The European Union’s General Data Protection Regulation (GDPR) takes ...
Security Boulevard
Loading...