Definition, Exercises, Government and Information Security

NYDFS Proposes Updated Second Amendment to Its Cybersecurity Regulation

Hunton Privacy

JULY 5, 2023

As a result of the initial 60-day comment period, the updated Amendment incorporates a number of changes, including the following: Definitions NYDFS clarified the thresholds for calculating when covered entities qualify as “Class A Companies,” which would be subject to heightened requirements.

Cybersecurity

Cybersecurity IT Compliance Financial Services

California Legislature Passes Bill to Establish the Genetic Information Privacy Act, Pending Governor’s Signature

Hunton Privacy

SEPTEMBER 1, 2020

The Act also excludes from the definition of genetic data, “deidentified data,” as defined in the Act. Not disclosing, subject to specified exceptions, a consumer’s genetic data to certain entities ( e.g. , those responsible for making decisions regarding health insurance, life insurance or employment).

Privacy

Privacy Insurance Marketing Information governance

How to implement the General Data Protection Regulation (GDPR)

IBM Big Data Hub

FEBRUARY 23, 2024

Each EEA state sets its own definition of “child” under the GDPR. Companies must be prepared to comply with these varying definitions. Common responsibilities include overseeing risk assessments, training employees on data protection principles, and working with government authorities.

GDPR

GDPR Compliance Personal data Privacy

California Privacy Law Overhaul – Proposition 24 Passes

Data Matters

NOVEMBER 4, 2020

Changes to the Definition of Businesses Subject to the CPRA. The CPRA adjusts its definition of a “business” as defined by the CCPA; broadening the scope in some cases, and narrowing it in others. The CPRA expanded the definition of a business in several respects. However, in some cases, the definition of “business” is narrowed.

Privacy

Privacy B2B Sales Data breaches

China Issues Draft of Personal Information Protection Law

Hunton Privacy

OCTOBER 27, 2020

Personal information refers to the various types of information recorded in electrical or other formats related to identified and identifiable individuals. The definition includes information that can identify data subjects as well as information that is related to the data subjects. Scope of Application.

Cybersecurity

Cybersecurity Data breaches Personal data Government

KM World Covers the Latest Best Practices in IG

IGI

SEPTEMBER 27, 2017

The IGI is pleased to share the latest by KM World: a useful best practices whitepaper digging into the details of IG, sponsored in part by IGI Supporter Actiance , that includes the following perspective on the efforts of the Information Governance Initiative. – Your Governance Tools Must be Designed for Today’s Communications.

ECM

ECM Information governance Communications Government

California Consumer Privacy Act Signed, Introduces Key Privacy Requirements for Businesses

Hunton Privacy

JUNE 29, 2018

Definition of Personal Information. Personal information is defined broadly as “information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household.” Right to Know.

Privacy

Privacy Sales Personal data Communications

New SEC Cybersecurity Rules Could Affect Private Companies Too

eSecurity Planet

SEPTEMBER 23, 2022

In effect, the law increased criminal and financial liability for managers and board members even as it avoided any definition of financial competence. See the top Governance, Risk & Compliance (GRC) tools. Proposed SEC Security Changes. for past events and the template of information required for those follow-up reports.

Cybersecurity

Cybersecurity Compliance Risk Communications

11th Circuit Vacates LabMD Enforcement Order; Casts Doubt on Decades of FTC Cybersecurity Enforcement Practices

Data Matters

JUNE 12, 2018

In recent years, the Federal Trade Commission has increasingly exercised its enforcement authority to target deceptive and unfair information security practices. Until last week, that is. Wyndham Worldwide Corp., 3d 236 (3d Cir. Enforceability of Order.

Cybersecurity

Cybersecurity Information Security Security IT

The Cathay Pacific Breach: Is Data Protection and Cyber Security Law in Hong Kong About to Receive an Upgrade?

HL Chronicle of Data Protection

JUNE 17, 2019

There is no question that the enforcement action against Cathay Pacific could generate a similar effect in relation to information security management aspects of the PDPO and in a mandatory breach notification obligation. This is definitely a space to watch, with interest. The Incident. DPP 2 Analysis: Data Retention.

Personal data

Personal data Data breaches Security Compliance

A Practical Guide to Cyber Incident Response

IT Governance

MAY 24, 2024

Oh, law enforcement doing its job is definitely a good thing. It’s how I convince them that they really need that cyber incident response plan , to do tabletop exercises , to train their staff , and so on. These types of technological solutions are essential to process huge amounts of information [security events like access logs].

Risk

Risk Security Ransomware Phishing

The Hacker Mind Podcast: How To Get Paid To Hack

ForAllSecure

SEPTEMBER 29, 2022

And the rest, they say is this as a reporter, I was in a position to learn as I wrote about information security. I would say primarily two and a half years and I still don't do exercises that well because I never look for exercise. The Pentagon was the first bug bounty in the history of the US federal government.

Mining

Mining IT Communications Marketing

The Hacker Mind Podcast: Hacking Diversity

ForAllSecure

APRIL 7, 2021

So I went and got a master's in it from Johns Hopkins University, and continue there for a little while and then it actually ended up switching over to a job where I was working in information assurance and quality assurance for the government, I've been government facing for, you know, pretty much my entire career at this point.

Cybersecurity

Cybersecurity Information Security IT Security

The Hacker Mind Podcast: Hacking Diversity

ForAllSecure

APRIL 7, 2021

So I went and got a master's in it from Johns Hopkins University, and continue there for a little while and then it actually ended up switching over to a job where I was working in information assurance and quality assurance for the government, I've been government facing for, you know, pretty much my entire career at this point.

Cybersecurity

Cybersecurity Information Security IT Security

German Data Protection Commissioners Issue Position Paper on Proposed EU General Data Protection Regulation

Hunton Privacy

SEPTEMBER 3, 2015

On August 14 and August 26, 2015, the Conference of the Data Protection Commissioners of the Federal Government and the Federal States ( Länder ) issued a detailed position paper (“Position Paper”) and a press release on the main issues for the trilogue negotiations on the proposed EU General Data Protection Regulation (the “Regulation”).

Paper

Paper Personal data Risk Government

The Hacker Mind Podcast: Hacking Industrial Control Systems

ForAllSecure

APRIL 26, 2022

So there’s a need, a definite need, for information security professionals to have access to industrial control systems -- not virtual, but actual hands on systems -- so they can learn. In a moment I’ll introduce you to someone who is trying to do that--bring ICS equipment to security conferences.

Energy and Utilities

Energy and Utilities Manufacturing Risk IT

The Hacker Mind Podcast: Hacking Real World Criminals Online

ForAllSecure

MAY 2, 2023

But it definitely was a different time. All those exercises, the honeypot or honeynet challenges I think that's what they were called in. the whole system and some of the FBI in general, you know, like, I think that the way that they treat people just in the information security community is a little I don't know, it's entitled.

IT

IT Sales Security Honeypots

The Hacker Mind Podcast: The Fog of Cyber War

ForAllSecure

JULY 6, 2022

I’m talking about cybercrime unicorns, talking the fog of cyberwar among nation states, and about a new book that I think will be on the shelves of every information security professional later this summer. Vamosi: The slogan of the RSA Conference is “Where the World Talks Security,” and, in general.

Ransomware

Ransomware Military Government Security

What Is Our Professional Future?

Brandeis Records Manager

SEPTEMBER 19, 2016

A recent futurist reading binge has been an exercise in masochism, or deer-in-the-headlights simulation, or emperor’s new clothes realization. Reading through Kelly’s book as a records manager or archivist is an exercise in marathon squirming. Perhaps cloud brokers will offer some sort of information control as a service (ICaaS).

Blockchain

Blockchain Records Management Unstructured data Artificial Intelligence

Information Management Today

NYDFS Proposes Updated Second Amendment to Its Cybersecurity Regulation

California Legislature Passes Bill to Establish the Genetic Information Privacy Act, Pending Governor’s Signature

Trending Sources

How to implement the General Data Protection Regulation (GDPR)

California Privacy Law Overhaul – Proposition 24 Passes

China Issues Draft of Personal Information Protection Law

KM World Covers the Latest Best Practices in IG

California Consumer Privacy Act Signed, Introduces Key Privacy Requirements for Businesses

New SEC Cybersecurity Rules Could Affect Private Companies Too

11th Circuit Vacates LabMD Enforcement Order; Casts Doubt on Decades of FTC Cybersecurity Enforcement Practices

The Cathay Pacific Breach: Is Data Protection and Cyber Security Law in Hong Kong About to Receive an Upgrade?

A Practical Guide to Cyber Incident Response

The Hacker Mind Podcast: How To Get Paid To Hack

The Hacker Mind Podcast: Hacking Diversity

The Hacker Mind Podcast: Hacking Diversity

German Data Protection Commissioners Issue Position Paper on Proposed EU General Data Protection Regulation

The Hacker Mind Podcast: Hacking Industrial Control Systems

The Hacker Mind Podcast: Hacking Real World Criminals Online

The Hacker Mind Podcast: The Fog of Cyber War

What Is Our Professional Future?

Stay Connected