Document, Financial Services, Government and Security

Accelerate hybrid cloud transformation through IBM Cloud for Financial Service Validation Program

IBM Big Data Hub

APRIL 4, 2024

This leaves many organizations hesitant to make the transition, fearing they will lose the control and security they have with their on-prem environments. A third-party investment review, where the ISV provides a bill of material showing what and how services are being used to meet compliance requirements, along with price points.

Financial Services

Financial Services Cloud Compliance Digital transformation

The Financial Service and Insurance Industries Need Intelligent Document Processing; Here’s Why

Rocket Software

MARCH 14, 2022

Analyst firm IDC recently published a Vendor Spotlight report featuring ASG Mobius Content Services (Mobius) and its applications in the financial service and insurance industries. IDP Trends in the Financial and Insurance Industries. Challenges to Effective IDP.

Financial Services

Financial Services Insurance Digital transformation Paper

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Data Protection Report

NOVEMBER 8, 2023

On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. The Amendment also includes new governance requirements and responsibilities applicable to the CISO of all covered entities.

Financial Services

Financial Services Cybersecurity Compliance Government

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Choosing to Store, Scan, or Shred Your Documents: A Comprehensive Guide

Armstrong Archives

DECEMBER 18, 2023

This reality has made data security increasingly important, requiring a sea change in the way companies handle their documents. We have decades of experience in the safe storage, scanning, and shredding of our clients’ important documents. What paperwork do I need to keep: How do you know which documents to keep or shred?

Archiving

Archiving Paper Records Management Compliance

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services

Financial Services Cybersecurity Insurance Risk

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

Security Affairs

MAY 24, 2023

The US Department of the Treasury’s Office of Foreign Assets Control (OFAC) announced sanctions against four entities and one individual for their role in malicious cyber operations conducted to support the government of North Korea. ” reads the announcement. correspondent or payable-through account sanctions.”

Government

Government Military Financial Services IT

First American Financial Pays Farcical $500K Fine

Krebs on Security

JUNE 18, 2021

In May 2019, KrebsOnSecurity broke the news that the website of mortgage settlement giant First American Financial Corp. NYSE:FAF ] was leaking more than 800 million documents — many containing sensitive financial data — related to real estate transactions dating back 16 years. First American Financial Corp.

Insurance

Insurance Risk Financial Services Mining

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. GDPR (among other legal requirements in the EU and elsewhere) can expose multinational organizations to hefty financial penalties, additional rules for disclosing data breaches, and increased scrutiny of the adequacy of their data security.

Data Privacy

Data Privacy Compliance Privacy Security

Capturing Paper Documents - Best Practices and Common Questions

AIIM

OCTOBER 22, 2019

Also known as “capture,” this capability is characterized by the ability to scan paper documents to store and use them in digital form instead of paper. First developed over 30 years ago, capture systems have evolved from simple solutions for basic scanning into sophisticated and expensive systems for enterprise-wide document automation.

Paper

Paper Computer and Electronics Access ECM

FCA sets out plans to make Big Tech a priority and provides update on its approach to AI

Data Protection Report

APRIL 23, 2024

He noted that whilst the growing emergence of Big Tech in financial services has already made life easier for consumers, it remains unclear how valuable their data will become in financial markets. cybersecurity, financial stability, interconnectedness, data concerns or market integrity).

Financial Services

Financial Services IT Marketing Retail

$8 million penalty to NYDFS – and another case of over-retention

Data Protection Report

JANUARY 18, 2024

On January 3, 2024, the New York Department of Financial Services announced a consent order with GGT, where GGT agreed to pay NYDFS $8 million and to surrender its BitLicense (for cryptocurrency trading), due to alleged violations of NYDFS’ cybersecurity and its virtual currency regulations.

Cybersecurity

Cybersecurity Financial Services Compliance Encryption

Collibra and Amazon Web Services (AWS) partnership reaches new heights

Collibra

JULY 14, 2023

Today, we’re excited to announce we’ve attained two new AWS Competencies under the AWS Competency Program: the Data and Analytics Competency, and the Government Competency. Collibra takes immense pride in achieving the AWS Data and Analytics Competency and the AWS Government Competency.

Analytics

Analytics Government Metadata Financial Services

Top 10 Governance, Risk and Compliance (GRC) Vendors

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. It includes multi-disciplinary risk and compliance management solutions and tools, including: IT & security risk management. Third-party governance.

Compliance

Compliance Risk Government Retail

OCR Labs exposes its systems, jeopardizing major banking clients

Security Affairs

APRIL 6, 2023

A digital identification tool provided by OCR Labs to major banks and government agencies leaked sensitive credentials, putting clients at severe risk. Its services are used by companies and financial institutions including BMW, Vodafone, the Australian government, Westpac, ANZ, HSBC, and Virgin Money.

IT

IT Financial Services Access Risk

Scary Fraud Ensues When ID Theft & Usury Collide

Krebs on Security

JANUARY 25, 2022

The reader who shared this story (and copious documentation to go with it) asked to have his real name omitted to avoid encouraging further attacks against his identity. MSF said the personal information involved in this incident may have included name, date of birth, government-issued identification numbers (e.g.,

Financial Services

Financial Services IT Data breaches Authentication

Multinational ICICI Bank leaks passports and credit card numbers

Security Affairs

APRIL 20, 2023

ICICI Bank leaked millions of records with sensitive data, including financial information and personal documents of the bank’s clients. In 2022, the ICICI Bank’s resources were named a “critical information infrastructure” by the Indian government – any harm to it can impact national security.

Personal data

Personal data Phishing Risk Financial Services

Ransomware at IT Services Provider Synoptek

Krebs on Security

DECEMBER 27, 2019

-based Synoptek is a managed service provider that maintains a variety of cloud-based services for more than 1,100 customers across a broad spectrum of industries , including state and local governments, financial services, healthcare, manufacturing, media, retail and software.

Ransomware

Ransomware IT Phishing Financial Services

MITRE ResilienCyCon: You Will Be Breached So Be Ready

eSecurity Planet

NOVEMBER 17, 2022

The conference’s focus on cyber resilience doesn’t mean that organizations should abandon core security defenses like EDR , access control and firewalls , but they should be prepared for the advanced threats that will, at some point, get past them. ” Sounil Yu: Lack of security response & recovery products.

Cloud

Cloud Ransomware Encryption Cybersecurity

Risk Management under the DORA Regulation

IT Governance

NOVEMBER 23, 2023

The financial sector is quite heavily regulated, and involves a lot of confidential data. You’d therefore expect that the sector fares better at data security than your average organisation. Perhaps even more concerning to EU lawmakers is how dependent society at large is on banking and other financial services.

Risk

Risk Data breaches Authentication Financial Services

Maze ransomware gang discloses data from drug testing firm HMR

Security Affairs

APRIL 8, 2020

The research firm revealed that many of the government IDs exposed in the data breach have since expired. “Many of the ID documents we have on file have expired, but if you believe you provided to HMR IDs that are still valid, report these documents as being compromised to the organisation that issued them.”

Ransomware

Ransomware Data breaches Encryption Financial Services

Top 12 Cloud Security Best Practices for 2021

eSecurity Planet

SEPTEMBER 10, 2021

From the very beginning of the cloud computing era, security has been the biggest concern among enterprises considering the public cloud. In addition, 95 percent of survey respondents confirmed that they are extremely to moderately concerned about public cloud security. What is cloud security?

Cloud

Cloud Security Encryption Risk

2024 Tech and Cybersecurity Forecast: Navigating New Frontiers in Business

Thales Cloud Protection & Licensing

DECEMBER 20, 2023

This strategy addresses security concerns related to intellectual property and sensitive data in large language models (LLMs). This enhances data privacy and security and allows for greater control and efficiency in AI application deployment within the enterprise. This necessitates a shift in cybersecurity strategies.

Cybersecurity

Cybersecurity Blockchain Artificial Intelligence Encryption

What is Cybersecurity Risk Management?

eSecurity Planet

FEBRUARY 11, 2022

Some organizations such as financial services firms and healthcare organizations, have regulatory concerns in addition to business concerns that need to be addressed in a cybersecurity risk management system. Documenting and Implementing Procedures. Also read : Top Governance, Risk, and Compliance (GRC) Tools for 2022.

Risk

Risk Cybersecurity Encryption Access

SEC Announces Settled Charges Against First American for Cybersecurity Disclosure Controls Failures – Lessons Learned

Data Matters

JUNE 24, 2021

The SEC is considering enhancing its disclosure rules concerning cybersecurity risk governance and has indicated a target release date of October 2021. The Order alleges that this vulnerability exposed over 800 million images dating back to 2003, including sensitive personal data, such as Social Security numbers and financial information.

Cybersecurity

Cybersecurity Financial Services Risk Compliance

BEST PRACTICES: Rising complexities of provisioning identities has pushed ‘IGA’ to the fore

The Last Watchdog

APRIL 3, 2019

Identity governance and administration, or IGA , has suddenly become a front-burner matter at many enterprises. Related: Identity governance issues in the age of digital transformation. I had the chance at RSA 2019 to visit with Mike Kiser, global strategist at SailPoint , an Austin, TX-based supplier of IGA services to discuss this.

Digital transformation

Digital transformation Insurance Compliance Healthcare

eIDAS 2.0 REGULATION WILL CHANGE IDP USE CASES INCLUDING ID CAPTURE IN THE EU

Info Source

JULY 18, 2023

By Petra Beck, Senior Analyst Capture Software, Infosource Key Takeaways The expanded eIDAS (electronic Identification, Authentication and Trust Services) 2.0 It will become mandatory for government agencies and businesses in select verticals within the next 2 years. regulation is entering implementation stage in the EU.

Authentication

Authentication e-Delivery B2C Marketing

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

Data Protection Report

DECEMBER 23, 2019

Likewise, the New York State Department for Financial Services regulations requires relevant entities to have appropriate record retention policies and procedures. How do you build an effective information governance program? In the U.S., wish to reduce the cost of responding to discovery in litigation and investigations.

Privacy

Privacy Compliance Personal data Risk

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk

Risk Financial Services Insurance Cybersecurity

Capital Markets, AI, and the need for governance

Collibra

OCTOBER 31, 2023

With every financial services organization focused on making better and faster decisions, data professional and business leaders are eager to better understand how AI can facilitate their strategic goals. Financial services orgs, especially those in capital markets, frequently has been on the forefront of generative AI investment.

Marketing

Marketing Government Financial Services Artificial Intelligence

Institutional Investor’s Introduction to Blockchain and Digital Asset Investing

Data Matters

NOVEMBER 2, 2021

We will also discuss a developing range of services referred to as digital asset “prime brokerage” — describing the suite of services typically provided by these prime brokers and comparing them to traditional offerings of prime brokers in the securities space. Traditional OTC Derivatives.

Blockchain

Blockchain Marketing Access Risk

Top GRC Tools & Software for 2021

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. It includes multi-disciplinary risk and compliance management solutions and tools, including: IT & security risk management. Third-party governance.

Compliance

Compliance Risk Government Retail

The compliance challenges of hybrid working

IT Governance

AUGUST 26, 2021

For example, financial services firms may be worried about employees breaching insider trading laws. Indeed, if you have a lawful reason to monitor employees and you document that reason, you are justified to keep an eye on their activities. Preventing data breaches. Addressing technical vulnerabilities.

Compliance

Compliance Data breaches Privacy Risk

The aftermath of an incident – why keeping records of data breaches and privacy incidents matters

Data Protection Report

JUNE 14, 2022

As privacy incidents and security breaches involving personal information become increasingly frequent, organizations are more and more aware of the importance of implementing a robust privacy program to mitigate the risks and impacts of such incidents. Legal Obligations. Procedural Considerations.

Privacy

Privacy Data breaches Compliance Financial Services

AI governance: Key for addressing the Executive Order on safe, secure and trustworthy artificial intelligence

Collibra

NOVEMBER 10, 2023

Discussions surrounding AI governance, regulation, and ethics have taken center stage. The United States government, along with many other countries, has recognized the need to establish a framework for responsible AI development and deployment. And removing the use of AI to create biological weapons.

Artificial Intelligence

Artificial Intelligence Government Security Data Privacy

FinCEN Issues Notice on Reporting COVID-19 Criminal and Suspicious Activities, Companion Advisory on COVID-19-Related Medical Scams

Data Matters

MAY 21, 2020

Where a financial institution has made disclaimers or set forth its challenges in past SAR filings, FinCEN is not requiring the financial institution to correct those reports. Providing Supporting Documentation to Law Enforcement and FinCEN Timely When Requested. Government Agencies — Whom to Contact. See ( [link] ).

e-Discovery

e-Discovery Government Cybersecurity Financial Services

How ATB Financial drives agile data ops with Collibra and GCP

Collibra

MARCH 23, 2021

ATB Financial provides a diversified set of financial services to more than 770,000 residents of Alberta, Canada. Being a regionally focused institution, the group is dedicated to knowing its customers intimately, understanding their needs and providing products and services that help them achieve their goals.

Cloud

Cloud Government Access Metadata

6 Best Threat Intelligence Feeds to Use in 2023

eSecurity Planet

AUGUST 10, 2023

Here are our picks for the top threat intelligence feeds that security teams should consider adding to their defensive arsenal: AlienVault Open Threat Exchange: Best for community-driven threat feeds FBI InfraGard: Best for critical infrastructure security abuse.ch

Cybersecurity

Cybersecurity Access Metadata Energy and Utilities

8 Interesting Predictions for the Intelligent Information Capture Market in 2022

Info Source

MARCH 16, 2022

At the beginning of the year, I wrote out a list of predictions for 2022 and shared them on LinkedIn (and in Document Imaging Report ). The analysis of shipments of Document Scanners and Multi-Functional Peripherals reveals a shift towards lower end devices due to increased demand from home office workers since the start of the pandemic.

Information capture

Information capture Marketing Digital transformation Cloud

UK FCA Consults on Changes to Strong Consumer Authentication, Dedicated Interfaces, and Guidance on Payment Services

Data Matters

FEBRUARY 25, 2021

The FCA is proposing amendments to: the UK onshored versions of EU technical standards on strong customer authentication (SCA) and common and secure methods of communication (UK SCA-RTS); its Approach Document on Payment Services and Electronic Money (Approach Document); and. its Perimeter Guidance Manual (PERG).

Authentication

Authentication Paper Risk Insurance

Cloud, Intelligent Content Services, and Digital Fragility: What’s on the RIM Horizon for 2020

ARMA International

DECEMBER 26, 2019

Government topped the list of vertical industries at 23%. in 2017), with the remainder reporting into senior administrative roles, compliance, corporate services, or finance teams. in 2017), with the remainder reporting into senior administrative roles, compliance, corporate services, or finance teams.

Content services

Content services Cloud Records Management Privacy

8 Interesting Predictions for the Intelligent Information Capture Market in 2022

Info Source

MARCH 16, 2022

At the beginning of the year, I wrote out a list of predictions for 2022 and shared them on LinkedIn (and in Document Imaging Report ). The analysis of shipments of Document Scanners and Multi-Functional Peripherals reveals a shift towards lower end devices due to increased demand from home office workers since the start of the pandemic.

Information capture

Information capture Marketing Digital transformation Cloud

Ransomware Protection in 2021

eSecurity Planet

FEBRUARY 16, 2021

The internet is fraught with peril these days, but nothing strikes more fear into users and IT security pros than the threat of ransomware. Raising awareness about ransomware is a baseline security measure. As training sessions have little influence over staff for every potential attack, it makes added security more imperative.

Ransomware

Ransomware Encryption Insurance Cloud

SEC Releases Observations from Recent Cybersecurity Examinations of Broker-Dealers and Advisers

Hunton Privacy

FEBRUARY 6, 2015

On February 3, 2015, the Securities and Exchange Commission (“SEC”) released a Risk Alert , entitled Cybersecurity Examination Sweep Summary, summarizing observations from the recent round of cybersecurity examinations of registered broker-dealers and investment advisers under the Cybersecurity Examination Initiative.

Cybersecurity

Cybersecurity Insurance Financial Services Risk

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

Although the AG’s view was that the SCCs are valid, he suggested that those using them would need to examine the national security laws of the data importer’s jurisdiction to determine whether they can in fact comply with the terms of the SCCs. He also raised serious doubts over the validity of the Privacy Shield. In the U.S.,

Privacy

Privacy GDPR Data breaches Risk

Accelerate hybrid cloud transformation through IBM Cloud for Financial Service Validation Program

The Financial Service and Insurance Industries Need Intelligent Document Processing; Here’s Why

Webinars

Trending Sources

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Webinars

Choosing to Store, Scan, or Shred Your Documents: A Comprehensive Guide

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

First American Financial Pays Farcical $500K Fine

Security Compliance & Data Privacy Regulations

Capturing Paper Documents - Best Practices and Common Questions

FCA sets out plans to make Big Tech a priority and provides update on its approach to AI

$8 million penalty to NYDFS – and another case of over-retention

Collibra and Amazon Web Services (AWS) partnership reaches new heights

Top 10 Governance, Risk and Compliance (GRC) Vendors

OCR Labs exposes its systems, jeopardizing major banking clients

Scary Fraud Ensues When ID Theft & Usury Collide

Multinational ICICI Bank leaks passports and credit card numbers

Ransomware at IT Services Provider Synoptek

MITRE ResilienCyCon: You Will Be Breached So Be Ready

Risk Management under the DORA Regulation

Maze ransomware gang discloses data from drug testing firm HMR

Top 12 Cloud Security Best Practices for 2021

2024 Tech and Cybersecurity Forecast: Navigating New Frontiers in Business

What is Cybersecurity Risk Management?

SEC Announces Settled Charges Against First American for Cybersecurity Disclosure Controls Failures – Lessons Learned

BEST PRACTICES: Rising complexities of provisioning identities has pushed ‘IGA’ to the fore

eIDAS 2.0 REGULATION WILL CHANGE IDP USE CASES INCLUDING ID CAPTURE IN THE EU

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

Capital Markets, AI, and the need for governance

Institutional Investor’s Introduction to Blockchain and Digital Asset Investing

Top GRC Tools & Software for 2021

The compliance challenges of hybrid working

The aftermath of an incident – why keeping records of data breaches and privacy incidents matters

AI governance: Key for addressing the Executive Order on safe, secure and trustworthy artificial intelligence

FinCEN Issues Notice on Reporting COVID-19 Criminal and Suspicious Activities, Companion Advisory on COVID-19-Related Medical Scams

How ATB Financial drives agile data ops with Collibra and GCP

6 Best Threat Intelligence Feeds to Use in 2023

8 Interesting Predictions for the Intelligent Information Capture Market in 2022

UK FCA Consults on Changes to Strong Consumer Authentication, Dedicated Interfaces, and Guidance on Payment Services

Cloud, Intelligent Content Services, and Digital Fragility: What’s on the RIM Horizon for 2020

8 Interesting Predictions for the Intelligent Information Capture Market in 2022

Ransomware Protection in 2021

SEC Releases Observations from Recent Cybersecurity Examinations of Broker-Dealers and Advisers

The Privacy Officers’ New Year’s Resolutions

Stay Connected