IBM Big Data Hub

SEPTEMBER 20, 2023

When implemented in a responsible way—where the technology is fully governed, privacy is protected and decision making is transparent and explainable—AI has the power to usher in a new era of government services. AI’s value is not limited to advances in industry and consumer products alone.

Government 109

Government Artificial Intelligence Privacy Digital transformation 109

Data Matters

FEBRUARY 10, 2021

On February 4, 2021, the New York Department of Financial Services (NYDFS) issued Circular Letter No. Lacewell stated that cybersecurity is the biggest risk for government and private organizations and described how the Framework is based on “extensive dialogue with industry and experts.”. Obtain Cybersecurity Expertise.

Insurance 79

Insurance Financial Services Cybersecurity Risk 79

Data Protection Report

JANUARY 18, 2024

On January 3, 2024, the New York Department of Financial Services announced a consent order with GGT, where GGT agreed to pay NYDFS $8 million and to surrender its BitLicense (for cryptocurrency trading), due to alleged violations of NYDFS’ cybersecurity and its virtual currency regulations.

Cybersecurity 110

Cybersecurity Financial Services Compliance Encryption 110

Data Matters

JUNE 24, 2021

On June 15, 2021, the SEC announced settled charges against First American Title Insurance Company (First American) for disclosure controls and procedures violations related to a cybersecurity vulnerability that exposed sensitive customer information. This resolution highlights the SEC’s continued focus on cybersecurity.

Cybersecurity 68

Cybersecurity Financial Services Risk Compliance 68

Security Affairs

MAY 24, 2023

The US Department of the Treasury’s Office of Foreign Assets Control (OFAC) announced sanctions against four entities and one individual for their role in malicious cyber operations conducted to support the government of North Korea. ” reads the announcement. correspondent or payable-through account sanctions.”

Government 81

Government Military Financial Services IT 81

Security Affairs

JUNE 20, 2023

Data-centric distributed resilience (DDR) offers a compelling approach to addressing data sovereignty in cybersecurity. Organizations must hope for the best yet plan for the worst, keeping their data, end users, and company safe from intruders as cybersecurity threats are on the rise.

Compliance 81

Compliance Cybersecurity Risk Encryption 81

IBM Big Data Hub

DECEMBER 18, 2023

For organizations of all types—and especially those in highly regulated industries such as financial services, government, healthcare and telco—considerations including the rise of generative AI, evolving regulations and data sovereignty laws and ongoing security challenges must be top of mind.

Cloud 70

Cloud Financial Services Compliance Digital transformation 70

eSecurity Planet

JUNE 16, 2022

However, basic cybersecurity tools and practices, like patching , strong passwords , and multi-factor authentication (MFA), “can prevent 80 to 90% of cyberattacks,” said Anne Neuberger, deputy national security advisor for cyber and emerging technologies, during a White House press conference in Sept. The average cost of a breach is $3.6

Ransomware 145

Ransomware Cybersecurity Phishing Encryption 145

IT Governance

OCTOBER 13, 2023

October is both Cybersecurity Awareness Month in the US and European Cyber Security Month in the EU – twin campaigns on either side of the Atlantic that aim to improve awareness of the importance of cyber security both at work and at home, and provide tips on how to stay secure.

Phishing 105

Phishing Financial Services Manufacturing Personal data 105

Security Affairs

MARCH 19, 2022

The Federal Bureau of Investigation (FBI) published a joint cybersecurity advisory warning of AvosLocker ransomware attacks targeting multiple US critical infrastructure. The advisory was published in coordination with the US Treasury Department and the Financial Crimes Enforcement Network (FinCEN). Consider installing and using a VPN.

Ransomware 97

Ransomware Passwords Encryption Financial Services 97

eSecurity Planet

AUGUST 9, 2022

See the Top Governance, Risk and Compliance (GRC) Tools. Other industry standards too can have the force of “pseudo-law” – notably, the NIST Cybersecurity Framework, which federal regulators often apply to financial-services firms and government contractors. PIPL Raises the Bar – And the Stakes.

Data Privacy 145

Data Privacy Compliance Privacy Security 145

DLA Piper Privacy Matters

APRIL 2, 2020

Working remotely, or “teleworking,” presents unique cybersecurity challenges to the employer, the employee and the supply chain, especially when being done for the first time in a rapidly changing environment. It is important to note, though, that cybersecurity regulation is generally sector-specific. Awareness and Training.

Cybersecurity 52

Cybersecurity Phishing Authentication Access 52

Data Matters

AUGUST 5, 2019

Furthermore, although entities that already comply with the breach notification requirements under certain state or federal laws (such as the Health Insurance Portability and Accountability Act (HIPAA), the New York Department of Financial Services cybersecurity regulations (23 N.Y.C.R.R.

Cybersecurity 68

Cybersecurity Data breaches Privacy Risk 68

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk 147

Risk Financial Services Insurance Cybersecurity 147

Hunton Privacy

DECEMBER 11, 2014

On December 10, 2014, the New York State Department of Financial Services (the “Department”) announced that it issued an industry guidance letter to all Department-regulated banking institutions that formally introduces the Department’s new cybersecurity preparedness assessment process.

Cybersecurity 40

Cybersecurity Financial Services Insurance Information Security 40

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. Third-party governance. IT governance and security. Financial reporting compliance. Privacy governance and management. Audit management.

Compliance 57

Compliance Risk Government Retail 57

eSecurity Planet

AUGUST 10, 2023

Threat intelligence feeds are continually updated streams of data that inform users of different cybersecurity threats, their sources, and any infrastructure impacted or at risk of being impacted by those threats. The massive, crowdsourced approach OTX takes limits the possibility of effective quality assurance. critical infrastructure.

Cybersecurity 95

Cybersecurity Access Metadata Energy and Utilities 95

KnowBe4

MARCH 28, 2023

A leader tasked with cybersecurity can get ahead of the game by understanding where we are in the story of machine learning (ML) as a hacking tool," Tyson writes. "At At present, the most important area of relevance around AI for cybersecurity is content generation. Security awareness training still has a place to play here."

Phishing 83

Phishing Security awareness Insurance Cybersecurity 83

CGI

MAY 26, 2016

Managing the regulatory risks of cybersecurity: An evolving regulatory landscape. Financial institutions in the U.S. are well aware of the business risks related to cybersecurity but there are an increasing number of related regulatory risks that also need to be addressed. Fri, 05/27/2016 - 00:37. regulators’ state of mind. .

Cybersecurity 40

Cybersecurity Risk Financial Services Compliance 40

Security Affairs

JUNE 20, 2020

Malicious Chrome browser extensions were used in a massive surveillance campaign aimed at users working in the financial services, oil and gas, media and entertainment, healthcare, government organizations, and pharmaceuticals. The tech giant removed over 100 Chrome browser extensions from the official Web Store.

Healthcare 115

Healthcare Financial Services Communications Security 115

eSecurity Planet

SEPTEMBER 10, 2021

CloudPassage’s 2021 AWS Cloud Security Report found that misconfiguration of cloud platforms (71 percent), exfiltration of sensitive data (59 percent), and insecure APIs (54 percent) are the top cloud security threats facing cybersecurity professionals. Train your staff. Those concerns are certainly justified.

Cloud 130

Cloud Security Encryption Risk 130

Data Protection Report

DECEMBER 23, 2019

This blogpost summarises our recent webinar: “ An urgent message from Berlin: The importance of record retention in privacy and cybersecurity ”. Likewise, the New York State Department for Financial Services regulations requires relevant entities to have appropriate record retention policies and procedures. In the U.S.,

Privacy 144

Privacy Compliance Personal data Risk 144

KnowBe4

FEBRUARY 14, 2023

This means you have a bunch of users that unwittingly follow a set of unusual and unnecessary clicks that they should know better than to follow – something they learn very quickly if they are enrolled in new-school security awareness training. Blog post with links: [link] Are Your Users Making Risky Security Mistakes? You're not alone.

Phishing 81

Phishing Security awareness Compliance Risk 81

Hunton Privacy

AUGUST 15, 2022

On July 29, 2022, the New York Department of Financial Services (“NYDFS”) posted proposed amendments (“Proposed Amendments”) to its Cybersecurity Requirements for Financial Services Companies (“Cybersecurity Regulations”). As part of the “training and monitoring” requirements under Section 500.14

Financial Services 55

Financial Services Cybersecurity Risk Passwords 55

Hunton Privacy

FEBRUARY 25, 2021

As reported on the Hunton Insurance Recovery blog , on February 4, 2021, the New York Department of Financial Services (“NYDFS”), which regulates the business of insurance in New York, has issued guidelines, in the Insurance Circular Letter No. billion were made under property/casualty policies that were silent about cyber risks.

Insurance 70

Insurance Cybersecurity Risk Education 70

Data Protection Report

APRIL 2, 2020

On March 10, 2020, the New York Department of Financial Services (NYDFS) issued guidance to all of its regulated institutions engaged in virtual currency business activity, requiring them to have plans for preparedness to manage the possible operational and financial risks posed by the COVID-19 pandemic.

Risk 59

Risk Communications Authentication Financial Services 59

DLA Piper Privacy Matters

AUGUST 23, 2021

We have summarised the key compliance obligations under the PIPL below, with new obligations in bold for ease of reference: Relevant Laws/Regulations The PIPL becomes the primary, national-level law governing processing of personal information, but does not replace the existing data privacy framework.

Data Privacy 111

Data Privacy Privacy Compliance Analytics 111

Data Protection Report

DECEMBER 23, 2019

This blogpost summarises our recent webinar: “ An urgent message from Berlin: The importance of record retention in privacy and cybersecurity ”. Likewise, the New York State Department for Financial Services regulations requires relevant entities to have appropriate record retention policies and procedures. In the U.S.,

Privacy 52

Privacy Compliance Personal data Risk 52

DLA Piper Privacy Matters

JULY 30, 2019

From the bad guy’s perspective, why hack one organization directly when you can hit a service provider with potentially weaker defenses and the sensitive data of many organizations? Do “reasonable” cybersecurity controls extend to third parties? What’s the fallout from a service provider breach?

Data breaches 45

Data breaches Cybersecurity Financial Services Risk 45

HL Chronicle of Data Protection

MARCH 14, 2019

The proposed Rule would allow the CISO to be an employee of a service provider or affiliate, although in that case the FI would be required to designate a senior member of its personnel to direct and oversee the CISO. Employee training. Board reporting. Periodic risk assessments.

Privacy 40

Privacy Risk Cybersecurity Information Security 40

Data Protection Report

JANUARY 6, 2020

The New York State Department for Financial Services regulations require covered entities to have appropriate record retention policies and procedures and the CCPA provides an extra incentive to implement proper information governance to minimise the costs data access requests. In the U.S., Be one step ahead.

Privacy 84

Privacy GDPR Data breaches Risk 84

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. Third-party governance. IT governance and security. Financial reporting compliance. Privacy governance and management. Audit management.

Compliance 67

Compliance Risk Government Retail 67

eSecurity Planet

FEBRUARY 16, 2021

With vulnerabilities rooted in unsuspecting users, the task of preventing these attacks means both staff training and a robust email and network security system that includes a strong backup program so you have a recent copy of your data that you can roll back to. Healthcare and financial services are the most attacked industries.

Ransomware 97

Ransomware Encryption Insurance Cloud 97

Data Protection Report

JANUARY 6, 2020

The New York State Department for Financial Services regulations require covered entities to have appropriate record retention policies and procedures and the CCPA provides an extra incentive to implement proper information governance to minimise the costs data access requests. In the U.S., Be one step ahead.

Privacy 52

Privacy GDPR Data breaches Risk 52

Data Protection Report

AUGUST 11, 2022

On July 29, 2022, the New York Department of Financial Services (NYDFS) announced a “pre-proposed outreach” of material proposed changes to almost every section of its cybersecurity regulations, and would affect each entity covered by the current regulations of 23 NYCRR Part 500. Governance.

Cybersecurity 58

Cybersecurity Risk Passwords Compliance 58

eSecurity Planet

SEPTEMBER 16, 2022

Finally, it also is useful for companies looking for a governance, risk, compliance ( GRC ) solution. In its 2021 Threat Force Intelligence Index , IBM reported that manufacturing and financial services were the two industries most at risk for attack, making up 23.2% Take a look at What Is Cybersecurity Risk Management?

Analytics 113

Analytics Risk Authentication Financial Services 113

IBM Big Data Hub

SEPTEMBER 18, 2023

Supplier visibility and traceability is growing in importance to help achieve environmental, social and governance (ESG) targets. Clients leveraging IBM Cloud for Financial Services through IBM’s Connected Trade Platform can take advantage of technical expertise to enable cloud deployment as they address their compliance requirements.

Financial Services 90

Financial Services Cloud Compliance Artificial Intelligence 90