Regulatory Compliance
Organizations Struggle With CCPA, CPRA, GDPR Compliance
The vast majority—92% of companies across all verticals, states and business sizes—are still unprepared for compliance with the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), while a similar ...
Kiteworks: The Modern Solution for Financial Institutions Seeking Compliance With the FTC Safeguards Rule
As a financial institution, it is crucial to ensure that you are in compliance with all relevant regulations, including the Federal Trade Commission (FTC) Safeguards Rule. This rule is part of the ...
What Is FERPA Compliance?
What is FERPA compliance? FERPA compliance refers to requirements academic institutions must adhere to when handling sensitive student data, including educational information and PII. These requirements cover cybersecurity, administrative privacy measures, and ...
What Is the NIST Cybersecurity Framework (CSF)?
What is NIST CSF? The NIST (National Institute of Standards and Technology) CSF (Cybersecurity Framework) consists of standards, guidelines, and best practices that organizations can use to manage cybersecurity risk. NIST is ...
Quantifying the Social Impact of Ransomware and ESG Disclosure Implication
2022 began with successful ransomware attacks against global IT and digital transformation providers, no thanks to the notorious LAPSUS$ ransomware gang. Often, any discussion about ransomware impact has mostly centered on affected ...
Exploring ESG Through a GRC Lens
Oftentimes, three-letter acronyms trend and become buzzwords. At other times, they act as catalysts by influencing the business environment in which an organization operates. Such acronyms include CSR (corporate social responsibility), GRC ...
PCI 4.0: The wider meanings of the new Standard
The new PCI DSS Standard, version 4.0, contains all the steps, best practices, and explanations required for full compliance. In fact, even an organization that does not process cardholder data could follow ...
High Availability and Security for Cloud-Based Systems
IT organizations striving to ensure compliance with HIPAA, Sarbanes-Oxley, BASEL II and similar regulations generally have a good grasp of the security considerations that apply to key hardware and software systems running ...
What you need to know about PCI 4.0: Requirements 5, 6, 7, 8 and 9
In Part 1 of this series, we reviewed the first four sections of the new PCI standards. As we continue our examination of PCI DSS version 4.0, we will consider what organizations ...
NIST SP 800-161r1: What You Need to Know
Modern goods and services rely on a supply chain ecosystem, which are interconnected networks of manufacturers, software developers, and other service providers. This ecosystem provides cost savings, interoperability, quick innovation, product feature ...
