Companies across verticals are facing a growing number of requirements tied to standards and legislation. Health care organizations must comply with privacy standards set by the Health Insurance Portability and Accountability Act. Government agencies and contractors need to meet standards established under the Federal Information Security Management Act. And businesses across the country are implementing new…
The concept of security ratings, noted by Biden officials, is one that the cybersecurity community has batted around for some time: place a label on the box that says a product is or is not secure, and let consumers create a market around security. But experts say the simplicity of that concept is both its strength and its weakness.
SC Media spoke to Tye Eyden, collaboration business systems analyst at New Belgium Brewing about ongoing efforts to stay ahead of privacy regulations. He credits workflow automation for bringing the company into compliance with the California Privacy Rights Act in just five months.
Today’s columnist, Borya Shakhnovich of airSlate, says companies such as Facebook have extended work-from-home plans and likely embrace automation. He says companies facing employee burnout from work-from-home policies will find that automation paves the way to enterprise security.
Today’s columnist, Andrea Carcano of Nozomi Networks, points out that the attempted attack at the water facility February 5 in Oldsmar, Fla., underscores the vulnerability of similar plants around the country. Carcano offers five takeaways security teams can put to work.
Today’s columnist, Mary Braunwarth of NetSPI, notes that falling short on regulatory requirements can put companies on the hook for hefty fines, such as in the case of Citibank, which was fined $400 million by the U.S. Treasury Department.
The nonprofit IT trade association CompTIA officially announced the launch of its new Cybersecurity Advisory Council, which will deliver informational content, guidance and recommendations to the tech sector.
So far, U.S. companies have felt the brunt of regulators’ displeasure. The highest GDPR fine so far – $57 million – was imposed on Google by French regulators, though Marriott may have to pony up $123 million.
Organizations that can show they did their due diligence in protecting medical information will be better off, should a breach occur.
If 2020 brought deadlines tied to various privacy and data protection policies, then 2021 means compliance – with less leniency for companies that fall short of regulations.
