Analysis, Data, Financial Services and Government

Accelerate hybrid cloud transformation through IBM Cloud for Financial Service Validation Program

IBM Big Data Hub

APRIL 4, 2024

The cloud represents a strategic tool to enable digital transformation for financial institutions As the banking and other regulated industry continues to shift toward a digital-first approach, financial entities are eager to use the benefits of digital disruption. Most of these new technologies are born-in-cloud.

Financial Services

Financial Services Cloud Compliance Digital transformation

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Data Protection Report

NOVEMBER 8, 2023

On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. The Amendment also includes new governance requirements and responsibilities applicable to the CISO of all covered entities.

Financial Services

Financial Services Cybersecurity Compliance Government

What can AI and generative AI do for governments?

IBM Big Data Hub

SEPTEMBER 20, 2023

When implemented in a responsible way—where the technology is fully governed, privacy is protected and decision making is transparent and explainable—AI has the power to usher in a new era of government services. AI’s value is not limited to advances in industry and consumer products alone.

Government

Government Artificial Intelligence Privacy Digital transformation

AI Governance: Break open the black box

IBM Big Data Hub

OCTOBER 4, 2022

Today, AI presents an enormous opportunity to turn data into insights and actions, to amplify human capabilities, decrease risk and increase ROI by achieving break through innovations. Furthermore, 59% of executives claim AI can improve the use of big data in their organizations, facts about artificial intelligence show. (

Government

Government Artificial Intelligence Metadata Data science

UK Government sets out proposals to shake up UK data protection laws

Data Protection Report

SEPTEMBER 28, 2021

On 10 September 2021, the UK Government published its consultation paper on proposals to reform the UK’s data protection regime. It has seized it with gusto, announcing more than 70 proposals and calls for views and publishing its economic analysis of expected impact. Core elements of the GDPR: legal bases / conditions.

Government

Government FOIA GDPR Compliance

AI Governance: Why our tested framework is essential in an AI world

Collibra

AUGUST 14, 2023

As we speed into a new AI era, there’s a critical element that’s often missing when organizations rush forward in hyper-competitive markets to build scalable, trusted AI programs — and that’s AI governance. An AI governance framework offers a blueprint for how to create successful AI products.

Government

Government Risk Financial Services Compliance

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR-style data privacy laws came to the U.S. PIPL Raises the Bar – And the Stakes.

Data Privacy

Data Privacy Compliance Privacy Security

FCA sets out plans to make Big Tech a priority and provides update on its approach to AI

Data Protection Report

APRIL 23, 2024

The speech: key points As part of his speech, Mr Rathi explained that the FCA plans to examine how Big Tech firms’ unique access to large sets of data could unlock better products, more competitive prices and wider choice for consumers and businesses. The FCA also sets out its next steps.

Financial Services

Financial Services IT Marketing Retail

Resecurity Released a 2024 Cyber Threat Landscape Forecast

Security Affairs

DECEMBER 26, 2023

Resecurity, a Los Angeles-based cybersecurity company protecting Fortune 100 and government agencies worldwide, has compiled a comprehensive forecast outlining the imminent threats and novel security challenges anticipated in the upcoming year. Recent U.S.

Energy and Utilities

Energy and Utilities Artificial Intelligence Ransomware Data breaches

Exclusive: Researchers dumped Gigabytes of data from Agent Tesla C2Cs

Security Affairs

OCTOBER 6, 2021

Resecurity researchers dumped Gigabytes of data from Agent Tesla C2Cs, one of the most well-known cyberespionage tools suffers a data leakage. The data extraction was made possible through a collaboration with Resecurity, law enforcement and several ISPs in the European Union, Middle East and North America.

Financial Services

Financial Services Retail Education Information Security

The Week in Cyber Security and Data Privacy: 6 – 12 November 2023

IT Governance

NOVEMBER 13, 2023

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. The data included shoppers’ names, email addresses, phone numbers, countries of residence and membership numbers. Records breached: 1.3

Data Privacy

Data Privacy Privacy Security Data breaches

6 benefits of data lineage for financial services

IBM Big Data Hub

FEBRUARY 26, 2024

The financial services industry has been in the process of modernizing its data governance for more than a decade. But as we inch closer to global economic downturn, the need for top-notch governance has become increasingly urgent. The answer is data lineage. Data lineage helps during these investigations.

Financial Services

Financial Services Cloud Metadata Digital transformation

NYDFS issues significant guidance on insurers using AI or external data

Data Protection Report

FEBRUARY 2, 2024

On January 17, 2024 the New York Department of Financial Services (“NYDFS”) published a Proposed Insurance Circular Letter (“Proposed Circular”) regarding the use of artificial intelligence systems (“AIS”) and external consumer data and information sources (“ECDIS”) in insurance underwriting and pricing.

Insurance

Insurance Artificial Intelligence Risk Compliance

Keeping Up with New Data Protection Regulations

erwin

APRIL 11, 2019

Keeping up with new data protection regulations can be difficult, and the latest – the General Data Protection Regulation (GDPR) – isn’t the only new data protection regulation organizations should be aware of. A number of high-profile data breaches and scandals have increased public awareness of the issue.

GDPR

GDPR e-Discovery Compliance Metadata

Cybersecurity agencies published a joint LockBit ransomware advisory

Security Affairs

JUNE 15, 2023

The operation targeted many organizations in critical infrastructure sectors, including financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation. organizations since 2020. law enforcement). was the prevalent variant in 2023.

Ransomware

Ransomware Cybersecurity Agriculture Education

#ModernDataMasters: Martin Squires, The Analysis Foundry

Reltio

JULY 2, 2019

Martin Squires is a leader with extensive experience in customer insight, marketing analytics & data science. Selected for the last 5 years as a member of the Data IQ Data 100 , Martin has considerable experience helping organisations drive value from building a deeper understanding of their customers.

Analytics

Analytics Insurance Artificial Intelligence Data science

Top 10 Governance, Risk and Compliance (GRC) Vendors

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. Third-party governance. Like other competitive GRC solutions, it speeds the process of aggregating and mining data, building reports, and managing files.

Compliance

Compliance Risk Government Retail

Security Affairs newsletter Round 450 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 17, 2023

CISA and ENISA enhance their Cooperation CISA adds Qlik bugs to exploited vulnerabilities catalog Report: 2.6 CISA and ENISA enhance their Cooperation CISA adds Qlik bugs to exploited vulnerabilities catalog Report: 2.6 CISA and ENISA enhance their Cooperation CISA adds Qlik bugs to exploited vulnerabilities catalog Report: 2.6

Security

Security Data breaches Ransomware Artificial Intelligence

NYDFS Proposes Updated Second Amendment to Its Cybersecurity Regulation

Hunton Privacy

JULY 5, 2023

On June 28, 2023, the New York Department of Financial Services (“NYDFS”) published an updated proposed Second Amendment (“Amendment”) to its Cybersecurity Regulation, 23 NYCRR Part 500. As described below, senior governing bodies would have new oversight responsibilities under the amendments.

Cybersecurity

Cybersecurity IT Compliance Financial Services

The aftermath of an incident – why keeping records of data breaches and privacy incidents matters

Data Protection Report

JUNE 14, 2022

Therefore, Albertan organizations should, at the very least, keep a record of their analysis regarding the incidents notification, to be able to demonstrate the reasoning behind such decision. Furthermore, organizations should remember the investigative powers granted to regulators. Procedural Considerations.

Privacy

Privacy Data breaches Compliance Financial Services

Enterprise Architecture: Secrets to Success

erwin

AUGUST 13, 2020

data protection, personal and sensitive data, tax issues and sustainability/carbon emissions)? Data Overload : How do we find and convert the right data to knowledge (e.g., big data, analytics and insights)? operating strategy, global business services and shared services)?

Artificial Intelligence

Artificial Intelligence Healthcare Compliance Financial Services

GUEST ESSAY: 5 security steps all companies should adopt from the Intelligence Community

The Last Watchdog

DECEMBER 6, 2018

The IC gathers, stores and processes large amounts of data, from a variety of sources, in order to provide actionable information for key stakeholders. And, in doing so, the IC has developed an effective set of data handling and cybersecurity best practices. Gather raw data from various sources. Collection. Processing.

Security

Security Financial Services Manufacturing Data collection

How ATB Financial drives agile data ops with Collibra and GCP

Collibra

MARCH 23, 2021

ATB Financial provides a diversified set of financial services to more than 770,000 residents of Alberta, Canada. Being a regionally focused institution, the group is dedicated to knowing its customers intimately, understanding their needs and providing products and services that help them achieve their goals.

Cloud

Cloud Government Access Metadata

The aftermath of an incident – business considerations surrounding record-keeping

Data Protection Report

AUGUST 2, 2022

Organizations should also be aware of sector-specific statutory obligations which may apply to them, for example in health or financial services industries. For a purchaser, records of privacy incidents provide valuable information about the vendor’s privacy governance structure. Risk management and mitigation.

Compliance

Compliance Privacy Risk Financial Services

The Week in Cyber Security and Data Privacy: 12 – 18 February 2024

IT Governance

FEBRUARY 21, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. TB of ASA Electronics data to its leak site The ALPHV/BlackCat ransomware gang is attempting to extort a ransom from ASA Electronics for 2.7 Data breached: 2.7

Data Privacy

Data Privacy Manufacturing Privacy Energy and Utilities

Unmasking 2024’s Email Security Landscape

Security Affairs

FEBRUARY 28, 2024

Drawing from an analysis of nearly a billion malicious emails, the report sheds light on advanced threats, empowering organizations to grasp the intricacies of email-based attacks. Below, we unveil some of the key revelations unearthed in this comprehensive study.

Security

Security Phishing Communications Financial Services

Ireland: Large-scale inquiries progress as DPC budget and staff numbers ramp up

DLA Piper Privacy Matters

FEBRUARY 28, 2022

The Data Protection Commission (DPC) has published its 2021 Annual Report , highlighting key observations, emerging guidance, and large-scale inquiries and decisions of 2021. The DPC received a total of 6,549 valid notifications of personal data breaches in 2021. Our analysis of the WhatsApp decision can be read here.

Financial Services

Financial Services Data breaches Personal data Compliance

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

The Last Watchdog

JANUARY 30, 2019

Late last year, Atrium Health disclosed it lost sensitive data for some 2.65 The culprit: lax practices of a third-party data and analytics contractor. One might assume top-tier financial services firms and healthcare vendors would have solved third-party cyber exposures by now. Uphill battle.

Risk

Risk Financial Services Insurance Cybersecurity

Business Architecture and Process Modeling for Digital Transformation

erwin

JULY 11, 2019

For instance, millennials are adept at using digital channels, and they are the fastest-growing customer base for financial services companies. This analysis also needs to span multiple departments, extending beyond business and process architecture to IT, compliance and even HR and legal. Data usage.

Digital transformation

Digital transformation Information capture Compliance Financial Services

Hundreds of malicious Chrome browser extensions used to spy on you!

Security Affairs

JUNE 20, 2020

Malicious Chrome browser extensions were used in a massive surveillance campaign aimed at users working in the financial services, oil and gas, media and entertainment, healthcare, government organizations, and pharmaceuticals. ” reads the analysis published by Awake Security.

Healthcare

Healthcare Financial Services Communications Security

Recently disclosed Drupal CVE-2019-6340 RCE flaw exploited in the wild

Security Affairs

FEBRUARY 26, 2019

The CVE-2019-6340 flaw is caused by the lack of proper data sanitization in some field types, an attacker could exploit the flaw to execute arbitrary PHP code. Some field types do not properly sanitize data from non- form sources. ” reads the technical analysis published by Ambionics security.

Financial Services

Financial Services CMS Government Security

What is a Cyberattack? Types and Defenses

eSecurity Planet

JUNE 16, 2022

Cyber criminals may damage, destroy, steal, encrypt, expose, or leak data as well as cause harm to a system. These new attacks affect everything from private citizens and businesses to government systems; healthcare organizations; public services; and food, water, and fuel supply chains. Ransomware. Crimeware and spyware.

Ransomware

Ransomware Cybersecurity Phishing Encryption

Lazarus malware delivered to South Korean users via supply chain attacks

Security Affairs

NOVEMBER 16, 2020

This threat actor has been active since at least 2009, possibly as early as 2007, and it was involved in both cyber espionage campaigns and sabotage activities aimed to destroy data and disrupt systems. ” reads the analysis published by ESET. that is requested to visit particular government and banking domains.

Financial Services

Financial Services Phishing Government Security

6 Best Threat Intelligence Feeds to Use in 2023

eSecurity Planet

AUGUST 10, 2023

Threat intelligence feeds are continually updated streams of data that inform users of different cybersecurity threats, their sources, and any infrastructure impacted or at risk of being impacted by those threats. The massive, crowdsourced approach OTX takes limits the possibility of effective quality assurance. critical infrastructure.

Cybersecurity

Cybersecurity Access Metadata Energy and Utilities

CCAR MRAs: 6 abilities you need

Collibra

NOVEMBER 3, 2020

As banks continue to work diligently to prepare for the Federal Reserve’s Capital Analysis and Review matter requiring attention (CCAR MRA) , many of them are finding that a mind shift is required. It’s no longer sufficient to think in terms of data management. CCAR MRAs and governance capabilities .

Metadata

Metadata Government Compliance Financial Services

Capital Markets, AI, and the need for governance

Collibra

OCTOBER 31, 2023

Last month, I attended the AWS Capital Markets Financial Data Forum in London. With every financial services organization focused on making better and faster decisions, data professional and business leaders are eager to better understand how AI can facilitate their strategic goals. Already using AI?

Marketing

Marketing Government Financial Services Artificial Intelligence

ManageEngine Product Review

eSecurity Planet

APRIL 8, 2021

There are also many specific use cases for education, healthcare, manufacturing, government and financial services. It’s marketed as a SIEM tool, but it focuses more on collecting and analyzing data from multiple sources rather than taking action to prevent potential threats from causing harm. EventLog Analyzer.

Cloud

Cloud Financial Services Compliance Manufacturing

Chinese LuckyMouse APT has been using a digitally signed network filtering driver in recent attacks

Security Affairs

SEPTEMBER 10, 2018

defense contractors and financial services firms worldwide. The attack hit a national data center in an unnamed country in Central Asia, according to Kaspersky, the hackers were preparing a watering hole attack. The hackers attempted to inject malicious JavaScript code into the government websites connected to the data center.

Communications

Communications Financial Services Phishing Encryption

Data Protection and the Draft EU-UK Withdrawal Agreement: Ten Initial Conclusions

HL Chronicle of Data Protection

NOVEMBER 15, 2018

The draft text of the EU-UK withdrawal agreement was published by the UK Government and the European Union yesterday, providing some of the first concrete indicators of the possible direction of travel in the area of data protection. Analysis of the text has barely started, but some of our initial conclusions are outlined below.

GDPR

GDPR Personal data Government Financial Services

Top GRC Tools & Software for 2021

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. Third-party governance. Like other competitive GRC solutions, it speeds the process of aggregating and mining data, building reports, and managing files.

Compliance

Compliance Risk Government Retail

Was RI Advice a watershed for cybersecurity law in Australia or a damp squib?

Data Protection Report

MAY 25, 2022

The decision has been labelled as a watershed decision in Australia – a ‘first of its kind’ case that puts financial services firms, and more broadly, corporate Australia, on notice that failures to adequately understand and manage cybersecurity and cyber resilience risks will no longer be tolerated by Australia’s regulatory agencies.

Cybersecurity

Cybersecurity Risk Financial Services Retail

The Intersection of Innovation, Enterprise Architecture and Project Delivery

erwin

MAY 16, 2019

Today there’s an unprecedented, rapid rate of change across all industry sectors, even those that have been historically slow to innovate like healthcare and financial services. How do we manage the numerous and often conflicting governance requirements across the delivery process? The Five EA Questions IT Needs to Ask.

Marketing

Marketing Financial Services Access IT

Cloud, Intelligent Content Services, and Digital Fragility: What’s on the RIM Horizon for 2020

ARMA International

DECEMBER 26, 2019

Government topped the list of vertical industries at 23%. in 2017), with the remainder reporting into senior administrative roles, compliance, corporate services, or finance teams. in 2017), with the remainder reporting into senior administrative roles, compliance, corporate services, or finance teams.

Content services

Content services Cloud Records Management Privacy

Accelerate hybrid cloud transformation through IBM Cloud for Financial Service Validation Program

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Trending Sources

What can AI and generative AI do for governments?

AI Governance: Break open the black box

UK Government sets out proposals to shake up UK data protection laws

AI Governance: Why our tested framework is essential in an AI world

Security Compliance & Data Privacy Regulations

Top 7 Data Governance Blog Posts of 2018

FCA sets out plans to make Big Tech a priority and provides update on its approach to AI

Resecurity Released a 2024 Cyber Threat Landscape Forecast

Exclusive: Researchers dumped Gigabytes of data from Agent Tesla C2Cs

The Week in Cyber Security and Data Privacy: 6 – 12 November 2023

6 benefits of data lineage for financial services

NYDFS issues significant guidance on insurers using AI or external data

Keeping Up with New Data Protection Regulations

Cybersecurity agencies published a joint LockBit ransomware advisory

#ModernDataMasters: Martin Squires, The Analysis Foundry

Top 10 Governance, Risk and Compliance (GRC) Vendors

Security Affairs newsletter Round 450 by Pierluigi Paganini – INTERNATIONAL EDITION

NYDFS Proposes Updated Second Amendment to Its Cybersecurity Regulation

The aftermath of an incident – why keeping records of data breaches and privacy incidents matters

Enterprise Architecture: Secrets to Success

GUEST ESSAY: 5 security steps all companies should adopt from the Intelligence Community

How ATB Financial drives agile data ops with Collibra and GCP

The aftermath of an incident – business considerations surrounding record-keeping

The Week in Cyber Security and Data Privacy: 12 – 18 February 2024

Unmasking 2024’s Email Security Landscape

Ireland: Large-scale inquiries progress as DPC budget and staff numbers ramp up

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

Business Architecture and Process Modeling for Digital Transformation

Hundreds of malicious Chrome browser extensions used to spy on you!

Recently disclosed Drupal CVE-2019-6340 RCE flaw exploited in the wild

What is a Cyberattack? Types and Defenses

Lazarus malware delivered to South Korean users via supply chain attacks

6 Best Threat Intelligence Feeds to Use in 2023

CCAR MRAs: 6 abilities you need

Capital Markets, AI, and the need for governance

ManageEngine Product Review

Chinese LuckyMouse APT has been using a digitally signed network filtering driver in recent attacks

Data Protection and the Draft EU-UK Withdrawal Agreement: Ten Initial Conclusions

Top GRC Tools & Software for 2021

Was RI Advice a watershed for cybersecurity law in Australia or a damp squib?

The Intersection of Innovation, Enterprise Architecture and Project Delivery

Cloud, Intelligent Content Services, and Digital Fragility: What’s on the RIM Horizon for 2020

Stay Connected