Definition, Financial Services and Information Security

Definition

Financial Services

Information Security

Vermont Enacts Insurance Data Security Law

Hunton Privacy

JUNE 9, 2022

The Vermont Insurance Data Security Law applies to “licensees”—those licensed, authorized to operate or registered, and those required to be licensed, authorized or registered, under Vermont insurance law, with few exceptions. Information Security Program Requirements.

Insurance

Insurance Security Information Security Cybersecurity

NYDFS Proposes Updated Second Amendment to Its Cybersecurity Regulation

Hunton Privacy

JULY 5, 2023

On June 28, 2023, the New York Department of Financial Services (“NYDFS”) published an updated proposed Second Amendment (“Amendment”) to its Cybersecurity Regulation, 23 NYCRR Part 500. On November 9, 2022, NYDFS published a first draft of the proposed Amendment and received comments from stakeholders over a 60-day period.

Cybersecurity

Cybersecurity IT Compliance Financial Services

Join 55,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Trending Sources

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Virgin Islands, and Guam) have their own data breach notification laws (and each such state, accordingly, has its very own definition of such basic terms as “data” and “breach”) – with Massachusetts’ and California’s respective breach-notification schemes viewed as among the strictest. In the U.S.,

Data Privacy

Data Privacy Compliance Privacy Security

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

FTC Seeks Comment on Proposed Changes to its GLBA Safeguards and Privacy Rules

Data Matters

MARCH 12, 2019

The Safeguards Rule specifies that financial institutions subject to the FTC’s jurisdiction must develop, implement, and maintain a comprehensive information security program for handling customer data. Aligning the Safeguards Rule with State Regimes.

Privacy

Privacy IT Information Security Insurance

BEST PRACTICES: Rising complexities of provisioning identities has pushed ‘IGA’ to the fore

The Last Watchdog

APRIL 3, 2019

Not only is the notion of what comprises a perimeter shifting, the definition of what constitutes a “user” is metamorphizing, as well. Companies need a reliable way to know at all times where sensitive data is sitting, and who might be accessing it, in order to keep it out of the hands of threat actors, he said. Users re-defined.

Digital transformation

Digital transformation Insurance Compliance Healthcare

New York Updates Cybersecurity Regulation for Financial Institutions

Hunton Privacy

JANUARY 3, 2017

On December 28, 2016, the New York State Department of Financial Services (“DFS”) announced an updated version of its cybersecurity regulation for financial institutions (the “Updated Regulation”). The Updated Regulation will become effective on March 1, 2017.

Cybersecurity

Cybersecurity Financial Services Authentication Information Security

New York Enacts Stricter Data Cybersecurity Laws

Data Matters

AUGUST 5, 2019

The Stop Hacks and Improve Electronic Data Security Act. The SHIELD Act’s reach extends further than New York State; the law applies to organizations that collect the private information of New York residents, “regardless of whether the person or business conducts business in New York.”

Cybersecurity

Cybersecurity Data breaches Privacy Risk

FTC Seeks Comment on Proposed Changes to GLBA Implementing Rules

HL Chronicle of Data Protection

MARCH 14, 2019

Finally, the plan must require evaluation and revisions to it as necessary following a security event. Chief Information Security Officer (“CISO”). Specific information security measures. The proposed Rule is much more detailed in terms of security measures that FIs must implement.

Privacy

Privacy Risk Cybersecurity Information Security

White House Releases Cybersecurity Legislative Proposal

Hunton Privacy

MAY 13, 2011

The provisions are aimed at standardizing the requirements for reporting security breaches by, among other things, establishing statutory definitions of a “security breach” and “sensitive personally identifiable information.”.

Cybersecurity

Cybersecurity Data breaches Information Security Financial Services

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

Definition of Personal information and Sensitive Personal information “Personal information” means any kind of information relating to an identified or identifiable natural person, either electronically or otherwise recorded, but excluding information that has been de-identified or anonymised.

Data Privacy

Data Privacy Privacy Compliance Analytics

Singapore Parliament Passes Personal Data Protection Act

Hunton Privacy

OCTOBER 17, 2012

For example, the bill does not contain a definition of “sensitive personal information,” and does not impose any special requirements for the handling of “sensitive personal information.” In addition, the bill does not impose a generally applicable data breach notification requirement.

Personal data

Personal data Financial Services Data Privacy Data breaches

UNRAVELING EternalBlue: inside the WannaCry’s enabler

Security Affairs

SEPTEMBER 1, 2023

This is achieved thanks to the second bug, which results from a difference in the SMB protocol’s definition of two related sub commands: SMB_COM_TRANSACTION2 and SMB_COM_NT_TRANSACT. With more data than expected being written, the extra data can overflow into adjacent memory space triggering the buffer overflow.

Phishing

Phishing Ransomware Search queries Access

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

IT Governance

MARCH 11, 2024

Only 3 definitely haven’t had data breached. Other news ISO/IEC 27006:2024 published ISO (the International Organization for Standardization) and the IEC (International electrotechnical Commission) have published a new standard in the ISO 27000 information security series. Organisation(s) Sector Location Data breached?

Data Privacy

Data Privacy Privacy Security Data breaches

President Trump Signs Financial Services Regulatory Reform Legislation

Data Matters

JUNE 5, 2018

The definition of “banking entity” now excludes insured depository institutions (and their parent companies and affiliates) if (i) the institution has less than $10 billion in total consolidated assets and (ii) the institution’s trading assets and liabilities are less than 5 percent of its total consolidated assets.

Financial Services

Financial Services Insurance Privacy Authentication

The Week in Cyber Security and Data Privacy: 22 – 28 April 2024

IT Governance

APRIL 29, 2024

Only 4 definitely haven’t had data breached. AI Scientists successfully use AI to detect AI-generated videos Scientists at the MISL (Multimedia and Information Security Lab) in Drexel University’s College of Engineering have developed a suite of tools to detect AI-generated videos at the sub-pixel level.

Data Privacy

Data Privacy Privacy Manufacturing Security

Information Management Today

Vermont Enacts Insurance Data Security Law

NYDFS Proposes Updated Second Amendment to Its Cybersecurity Regulation

Webinars

Trending Sources

Security Compliance & Data Privacy Regulations

Webinars

FTC Seeks Comment on Proposed Changes to its GLBA Safeguards and Privacy Rules

BEST PRACTICES: Rising complexities of provisioning identities has pushed ‘IGA’ to the fore

New York Updates Cybersecurity Regulation for Financial Institutions

New York Enacts Stricter Data Cybersecurity Laws

FTC Seeks Comment on Proposed Changes to GLBA Implementing Rules

White House Releases Cybersecurity Legislative Proposal

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

Singapore Parliament Passes Personal Data Protection Act

UNRAVELING EternalBlue: inside the WannaCry’s enabler

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

President Trump Signs Financial Services Regulatory Reform Legislation

The Week in Cyber Security and Data Privacy: 22 – 28 April 2024

Stay Connected