Analysis, Financial Services, Government and IT

Accelerate hybrid cloud transformation through IBM Cloud for Financial Service Validation Program

IBM Big Data Hub

APRIL 4, 2024

A third-party investment review, where the ISV provides a bill of material showing what and how services are being used to meet compliance requirements, along with price points. Ensuring that the success of a cloud transformation journey requires a combination of modern governance, standard control framework, and automation.

Financial Services

Financial Services Cloud Compliance Digital transformation

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Data Protection Report

NOVEMBER 8, 2023

On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. This notice requirement explicitly applies to cybersecurity incidents occurring to the covered entity itself, its affiliates, or a third-party service provider.

Financial Services

Financial Services Cybersecurity Compliance Government

What can AI and generative AI do for governments?

IBM Big Data Hub

SEPTEMBER 20, 2023

When implemented in a responsible way—where the technology is fully governed, privacy is protected and decision making is transparent and explainable—AI has the power to usher in a new era of government services. AI and its many use cases have become a topic of public discussion no longer relegated to tech experts.

Government

Government Artificial Intelligence Privacy Digital transformation

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

FCA sets out plans to make Big Tech a priority and provides update on its approach to AI

Data Protection Report

APRIL 23, 2024

On 22 April 2024, the Financial Conduct Authority ( FCA ) published a speech by its chief executive, Nikhil Rathi, entitled ‘Navigating the UK’s Digital Regulation Landscape: Where are we headed?’. The FCA also sets out its next steps.

Financial Services

Financial Services IT Marketing Retail

AI Governance: Break open the black box

IBM Big Data Hub

OCTOBER 4, 2022

Customers, employees and shareholders expect organizations to use AI responsibly, and government entities are demanding it. Failure to meet regulations can lead to government intervention in the form of regulatory audits or fines, damage to the organization’s reputation with shareholders and customers, and revenue loss.

Government

Government Artificial Intelligence Metadata Data science

NYDFS Proposes Updated Second Amendment to Its Cybersecurity Regulation

Hunton Privacy

JULY 5, 2023

On June 28, 2023, the New York Department of Financial Services (“NYDFS”) published an updated proposed Second Amendment (“Amendment”) to its Cybersecurity Regulation, 23 NYCRR Part 500. As described below, senior governing bodies would have new oversight responsibilities under the amendments.

Cybersecurity

Cybersecurity IT Compliance Financial Services

AI Governance: Why our tested framework is essential in an AI world

Collibra

AUGUST 14, 2023

As we speed into a new AI era, there’s a critical element that’s often missing when organizations rush forward in hyper-competitive markets to build scalable, trusted AI programs — and that’s AI governance. An AI governance framework offers a blueprint for how to create successful AI products.

Government

Government Risk Financial Services Compliance

Resecurity Released a 2024 Cyber Threat Landscape Forecast

Security Affairs

DECEMBER 26, 2023

Resecurity, a Los Angeles-based cybersecurity company protecting Fortune 100 and government agencies worldwide, has compiled a comprehensive forecast outlining the imminent threats and novel security challenges anticipated in the upcoming year. Recent U.S.

Energy and Utilities

Energy and Utilities Artificial Intelligence Ransomware Data breaches

UK Government sets out proposals to shake up UK data protection laws

Data Protection Report

SEPTEMBER 28, 2021

On 10 September 2021, the UK Government published its consultation paper on proposals to reform the UK’s data protection regime. It has seized it with gusto, announcing more than 70 proposals and calls for views and publishing its economic analysis of expected impact. The deadline for responding to the consultation is 19 November 2021.

Government

Government FOIA GDPR Compliance

6 benefits of data lineage for financial services

IBM Big Data Hub

FEBRUARY 26, 2024

The financial services industry has been in the process of modernizing its data governance for more than a decade. But as we inch closer to global economic downturn, the need for top-notch governance has become increasingly urgent. Automated impact analysis In business, every decision contributes to the bottom line.

Financial Services

Financial Services Cloud Metadata Digital transformation

Cybersecurity agencies published a joint LockBit ransomware advisory

Security Affairs

JUNE 15, 2023

The operation targeted many organizations in critical infrastructure sectors, including financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation. organizations since 2020. law enforcement). was the prevalent variant in 2023.

Ransomware

Ransomware Cybersecurity Agriculture Education

#ModernDataMasters: Martin Squires, The Analysis Foundry

Reltio

JULY 2, 2019

Particularly the data governance side is beginning to be seen as really important. I did an economics degree and then around three years in production planning and logistics types roles before starting as a junior economist for the old National and Provincial (N&P) Building Society. “In

Analytics

Analytics Insurance Artificial Intelligence Data science

Top 10 Governance, Risk and Compliance (GRC) Vendors

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. Third-party governance. IT governance and security. Financial reporting compliance. Enterprise & operational risk management. Audit management.

Compliance

Compliance Risk Government Retail

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “ Trickbot ,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016. companies and government entities.

Ransomware

Ransomware Government Cybersecurity Blockchain

Exclusive: Researchers dumped Gigabytes of data from Agent Tesla C2Cs

Security Affairs

OCTOBER 6, 2021

Agent Tesla , first discovered in late 2014, is an extremely popular “malware-as-a-service” Remote Access Trojan (RAT) tool used by threat actors to steal information such as credentials, keystrokes, clipboard data and other information from its operators’ targets. Los Angeles-based Resecurity, Inc.

Financial Services

Financial Services Retail Education Information Security

Security Affairs newsletter Round 450 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 17, 2023

CISA and ENISA enhance their Cooperation CISA adds Qlik bugs to exploited vulnerabilities catalog Report: 2.6 CISA and ENISA enhance their Cooperation CISA adds Qlik bugs to exploited vulnerabilities catalog Report: 2.6

Security

Security Data breaches Ransomware Artificial Intelligence

Unmasking 2024’s Email Security Landscape

Security Affairs

FEBRUARY 28, 2024

Drawing from an analysis of nearly a billion malicious emails, the report sheds light on advanced threats, empowering organizations to grasp the intricacies of email-based attacks. Below, we unveil some of the key revelations unearthed in this comprehensive study. billion emails globally, identifying approximately 950.39 million as malicious.

Security

Security Phishing Communications Financial Services

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

GDPR (among other legal requirements in the EU and elsewhere) can expose multinational organizations to hefty financial penalties, additional rules for disclosing data breaches, and increased scrutiny of the adequacy of their data security. See the Top Governance, Risk and Compliance (GRC) Tools. PIPL Raises the Bar – And the Stakes.

Data Privacy

Data Privacy Compliance Privacy Security

Enterprise Architecture: Secrets to Success

erwin

AUGUST 13, 2020

Taking months to perform impact analysis and solution design is no longer viable, and data has to be agile. With more governance around the information and processes we use to document that information, we can produce more accurate and robust analyses for a true “as-is” view of the entire organization for better decision-making.

Artificial Intelligence

Artificial Intelligence Healthcare Compliance Financial Services

The Week in Cyber Security and Data Privacy: 6 – 12 November 2023

IT Governance

NOVEMBER 13, 2023

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Welcome to this week’s round-up of the biggest and most interesting news stories. Approximately 1.3 Records breached: 1.3 million individuals McLaren Health Care notifies nearly 2.2

Data Privacy

Data Privacy Privacy Security Data breaches

Keeping Up with New Data Protection Regulations

erwin

APRIL 11, 2019

Some industries, such as healthcare and financial services, have been subject to stringent data regulations for years: GDPR now joins the Health Insurance Portability and Accountability Act (HIPAA), the Payment Card Industry Data Security Standard (PCI DSS) and the Basel Committee on Banking Supervision (BCBS). employees). employees).

GDPR

GDPR e-Discovery Compliance Metadata

The aftermath of an incident – business considerations surrounding record-keeping

Data Protection Report

AUGUST 2, 2022

Organizations should also be aware of sector-specific statutory obligations which may apply to them, for example in health or financial services industries. For a purchaser, records of privacy incidents provide valuable information about the vendor’s privacy governance structure. Risk management and mitigation.

Compliance

Compliance Privacy Risk Financial Services

Lazarus malware delivered to South Korean users via supply chain attacks

Security Affairs

NOVEMBER 16, 2020

” reads the analysis published by ESET. . ” reads the analysis published by ESET. The attackers are attempting to exploit the need to install additional security software when South Korean users visit government or financial services websites. . ” Pierluigi Paganini.

Financial Services

Financial Services Phishing Government Security

NYDFS issues significant guidance on insurers using AI or external data

Data Protection Report

FEBRUARY 2, 2024

On January 17, 2024 the New York Department of Financial Services (“NYDFS”) published a Proposed Insurance Circular Letter (“Proposed Circular”) regarding the use of artificial intelligence systems (“AIS”) and external consumer data and information sources (“ECDIS”) in insurance underwriting and pricing. Actual Actuarial Validity.

Insurance

Insurance Artificial Intelligence Risk Compliance

GUEST ESSAY: 5 security steps all companies should adopt from the Intelligence Community

The Last Watchdog

DECEMBER 6, 2018

This cycle takes a holistic approach to detecting and deterring external threats and enforcing best-of-class data governance procedures. Businesses at large would do well to model their data collection and security processes after what the IC refers to as the “intelligence cycle.” infrastructure from cyber attacks. Collection. Processing.

Security

Security Financial Services Manufacturing Data collection

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk

Risk Financial Services Insurance Cybersecurity

Hundreds of malicious Chrome browser extensions used to spy on you!

Security Affairs

JUNE 20, 2020

Malicious Chrome browser extensions were used in a massive surveillance campaign aimed at users working in the financial services, oil and gas, media and entertainment, healthcare, government organizations, and pharmaceuticals. ” reads the analysis published by Awake Security. ” continues the report.

Healthcare

Healthcare Financial Services Communications Security

Ireland: Large-scale inquiries progress as DPC budget and staff numbers ramp up

DLA Piper Privacy Matters

FEBRUARY 28, 2022

Our analysis of the WhatsApp decision can be read here. The Annual Report notes that forthcoming EU legislation (NIS2 Directive, Digital Markets Act, Digital Services Act, Artificial Intelligence Act and Data Governance Act) will drive further consideration and priority of data issues. Financial Services Sector Focus.

Financial Services

Financial Services Data breaches Personal data Compliance

Recently disclosed Drupal CVE-2019-6340 RCE flaw exploited in the wild

Security Affairs

FEBRUARY 26, 2019

In order to exploit the CVE-2019-6340 flaw, it is necessary that the core RESTful Web Services module is enabled and allows PATCH or POST requests. It is also possible to trigger the vulnerability if another web services module is enabled, such as JSON:API in Drupal 8 or RESTful Web Services or Services in Drupal 7.

Financial Services

Financial Services CMS Government Security

Business Architecture and Process Modeling for Digital Transformation

erwin

JULY 11, 2019

For instance, millennials are adept at using digital channels, and they are the fastest-growing customer base for financial services companies. This analysis also needs to span multiple departments, extending beyond business and process architecture to IT, compliance and even HR and legal. Supporting and reference documentation.

Digital transformation

Digital transformation Information capture Compliance Financial Services

The aftermath of an incident – why keeping records of data breaches and privacy incidents matters

Data Protection Report

JUNE 14, 2022

Therefore, Albertan organizations should, at the very least, keep a record of their analysis regarding the incidents notification, to be able to demonstrate the reasoning behind such decision. Organizations should also be aware of any sector-specific record-keeping obligations they may be subject to. Procedural Considerations.

Privacy

Privacy Data breaches Compliance Financial Services

ManageEngine Product Review

eSecurity Planet

APRIL 8, 2021

There are also many specific use cases for education, healthcare, manufacturing, government and financial services. This tool automates a number of log management processes, including collection, normalization, analysis, reporting, and alerts. This includes security, help desk, networking, and application performance.

Cloud

Cloud Financial Services Compliance Manufacturing

eIDAS 2.0 REGULATION WILL CHANGE IDP USE CASES INCLUDING ID CAPTURE IN THE EU

Info Source

JULY 18, 2023

By Petra Beck, Senior Analyst Capture Software, Infosource Key Takeaways The expanded eIDAS (electronic Identification, Authentication and Trust Services) 2.0 It will become mandatory for government agencies and businesses in select verticals within the next 2 years. regulation is entering implementation stage in the EU.

Authentication

Authentication e-Delivery B2C Marketing

6 Best Threat Intelligence Feeds to Use in 2023

eSecurity Planet

AUGUST 10, 2023

FBI InfraGard Best for critical infrastructure security InfraGard is a threat intelligence feed and network partnership between the FBI and other government agencies and interested private sector parties. The massive, crowdsourced approach OTX takes limits the possibility of effective quality assurance. critical infrastructure.

Cybersecurity

Cybersecurity Access Metadata Energy and Utilities

What is a Cyberattack? Types and Defenses

eSecurity Planet

JUNE 16, 2022

These new attacks affect everything from private citizens and businesses to government systems; healthcare organizations; public services; and food, water, and fuel supply chains. Capital markets, insurance, financial services, and banking are now online. Encrypted threats spiked 167%, ransomware increased 105%, and 5.4

Ransomware

Ransomware Cybersecurity Phishing Encryption

Capital Markets, AI, and the need for governance

Collibra

OCTOBER 31, 2023

With every financial services organization focused on making better and faster decisions, data professional and business leaders are eager to better understand how AI can facilitate their strategic goals. Financial services orgs, especially those in capital markets, frequently has been on the forefront of generative AI investment.

Marketing

Marketing Government Financial Services Artificial Intelligence

The Intersection of Innovation, Enterprise Architecture and Project Delivery

erwin

MAY 16, 2019

Today there’s an unprecedented, rapid rate of change across all industry sectors, even those that have been historically slow to innovate like healthcare and financial services. How do we manage the numerous and often conflicting governance requirements across the delivery process? The Five EA Questions IT Needs to Ask.

Marketing

Marketing Financial Services Access IT

Chinese LuckyMouse APT has been using a digitally signed network filtering driver in recent attacks

Security Affairs

SEPTEMBER 10, 2018

defense contractors and financial services firms worldwide. The hackers attempted to inject malicious JavaScript code into the government websites connected to the data center. ” reads the analysis published by Kaspersky. Further details including IoCs are reported in the analysis published by the experts.

Communications

Communications Financial Services Phishing Encryption

Top GRC Tools & Software for 2021

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. Third-party governance. IT governance and security. Financial reporting compliance. Enterprise & operational risk management. Audit management.

Compliance

Compliance Risk Government Retail

FFIEC Announces Plans to Update Cybersecurity Guidance in Wake of Cybersecurity Assessments

Hunton Privacy

NOVEMBER 4, 2014

Based on the assessments, the FFIEC observed that the level of cybersecurity inherent risk varies significantly across financial institutions, in part due to the various types of network connections, products and services, and technologies used by financial institutions.

Cybersecurity

Cybersecurity Financial Services Risk Government

Was RI Advice a watershed for cybersecurity law in Australia or a damp squib?

Data Protection Report

MAY 25, 2022

The decision has been labelled as a watershed decision in Australia – a ‘first of its kind’ case that puts financial services firms, and more broadly, corporate Australia, on notice that failures to adequately understand and manage cybersecurity and cyber resilience risks will no longer be tolerated by Australia’s regulatory agencies.

Cybersecurity

Cybersecurity Risk Financial Services Retail

How ATB Financial drives agile data ops with Collibra and GCP

Collibra

MARCH 23, 2021

ATB Financial provides a diversified set of financial services to more than 770,000 residents of Alberta, Canada. Being a regionally focused institution, the group is dedicated to knowing its customers intimately, understanding their needs and providing products and services that help them achieve their goals.

Cloud

Cloud Government Access Metadata

ABBYY Opens Office in Hong Kong to Strengthen Presence in Asia

Info Source

JULY 16, 2019

The retail industry and banking are the biggest spenders on AI in the region, with use cases such as fraud analysis and customer-facing process automation enabling self-service and improving customer experience. MILPITAS, Calif., The Asian market represents a substantial growth opportunity for ABBYY. billion in 2022. and Tech Mahindra.

Customer Experience

Customer Experience Financial Services Marketing Retail

Accelerate hybrid cloud transformation through IBM Cloud for Financial Service Validation Program

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Webinars

Trending Sources

What can AI and generative AI do for governments?

Webinars

FCA sets out plans to make Big Tech a priority and provides update on its approach to AI

AI Governance: Break open the black box

NYDFS Proposes Updated Second Amendment to Its Cybersecurity Regulation

AI Governance: Why our tested framework is essential in an AI world

Resecurity Released a 2024 Cyber Threat Landscape Forecast

UK Government sets out proposals to shake up UK data protection laws

Top 7 Data Governance Blog Posts of 2018

6 benefits of data lineage for financial services

Cybersecurity agencies published a joint LockBit ransomware advisory

#ModernDataMasters: Martin Squires, The Analysis Foundry

Top 10 Governance, Risk and Compliance (GRC) Vendors

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Exclusive: Researchers dumped Gigabytes of data from Agent Tesla C2Cs

Security Affairs newsletter Round 450 by Pierluigi Paganini – INTERNATIONAL EDITION

Unmasking 2024’s Email Security Landscape

Security Compliance & Data Privacy Regulations

Enterprise Architecture: Secrets to Success

The Week in Cyber Security and Data Privacy: 6 – 12 November 2023

Keeping Up with New Data Protection Regulations

The aftermath of an incident – business considerations surrounding record-keeping

Lazarus malware delivered to South Korean users via supply chain attacks

NYDFS issues significant guidance on insurers using AI or external data

GUEST ESSAY: 5 security steps all companies should adopt from the Intelligence Community

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

Hundreds of malicious Chrome browser extensions used to spy on you!

Ireland: Large-scale inquiries progress as DPC budget and staff numbers ramp up

Recently disclosed Drupal CVE-2019-6340 RCE flaw exploited in the wild

Business Architecture and Process Modeling for Digital Transformation

The aftermath of an incident – why keeping records of data breaches and privacy incidents matters

ManageEngine Product Review

eIDAS 2.0 REGULATION WILL CHANGE IDP USE CASES INCLUDING ID CAPTURE IN THE EU

6 Best Threat Intelligence Feeds to Use in 2023

What is a Cyberattack? Types and Defenses

Capital Markets, AI, and the need for governance

The Intersection of Innovation, Enterprise Architecture and Project Delivery

Chinese LuckyMouse APT has been using a digitally signed network filtering driver in recent attacks

Top GRC Tools & Software for 2021

FFIEC Announces Plans to Update Cybersecurity Guidance in Wake of Cybersecurity Assessments

Was RI Advice a watershed for cybersecurity law in Australia or a damp squib?

How ATB Financial drives agile data ops with Collibra and GCP

ABBYY Opens Office in Hong Kong to Strengthen Presence in Asia

Stay Connected