eSecurity Planet

AUGUST 9, 2022

But those aren’t the only laws or regulations that affect IT security teams. There are plenty of others to worry anyone with job titles that include terms like “compliance,” “privacy,” and “security,” from CSOs on down. See the Top Governance, Risk and Compliance (GRC) Tools. PIPL Raises the Bar – And the Stakes.

Data Privacy 145

Data Privacy Compliance Privacy Security 145

Krebs on Security

JUNE 18, 2021

Under First American’s documented vulnerability remediation policies, the data leak was classified as a security weakness with a “level 3” severity, which placed it in the “medium risk” category and required remediation within 45 days. “That’s a high-risk vulnerability.

Insurance 286

Insurance Risk Financial Services Mining 286

IT Governance

FEBRUARY 26, 2019

Originally published 26 June 2013. Information classification is a process in which organisations assess the data that they hold and the level of protection it should be given. Organisations usually classify information in terms of confidentiality – i.e. who is granted access to see it. appeared first on IT Governance Blog.

IT 69

IT Paper Access Information Security 69

Hunton Privacy

FEBRUARY 12, 2014

On February 12, 2014, the National Institute of Standards and Technology (“NIST”) issued the final Cybersecurity Framework , as required under Section 7 of the Obama Administration’s February 2013 executive order, Improving Critical Infrastructure Cybersecurity (the “Executive Order”).

Cybersecurity 40

Cybersecurity Risk Insurance Privacy 40

Hunton Privacy

MARCH 28, 2013

On March 28, 2013, the Department of Commerce’s Notice of Inquiry into “Incentives to Adopt Improved Cybersecurity Practices” was published in the Federal Register (78 Fed. The Notice of Inquiry provides a 30-day comment period and states that Commerce will submit its recommendations to the President no later than June 12, 2013.

Cybersecurity 40

Cybersecurity Government Risk Security 40

Hunton Privacy

NOVEMBER 19, 2013

On November 14, 2013, the Minister of the Malaysian Communications and Multimedia Commission (the “Minister”) announced that Malaysia’s Personal Data Protection Act 2010 (the “Act”) would be going into effect as of November 15, marking the end of years of postponements. The law imposes cross-border transfer restrictions.

Personal data 63

Personal data Marketing Communications Insurance 63

Data Matters

JULY 15, 2020

In addition, banks are subject to extensive ongoing regulatory requirements, including in respect of governance, risk management, capital, and liquidity, which a fintech or technology firm may not have the ability to meet without making substantial changes to its policies, procedures, and operations. Adopt a mixed strategy.

Compliance 68

Compliance Marketing Risk Privacy 68