Encryption, Financial Services, Insurance and Meeting

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services

Financial Services Cybersecurity Insurance Risk

Protecting Sensitive Data with Luna Key Broker for Microsoft Double Key Encryption

Thales Cloud Protection & Licensing

APRIL 1, 2021

Protecting Sensitive Data with Luna Key Broker for Microsoft Double Key Encryption. Microsoft DKE using Thales Luna HSMs makes it easy for organizations to follow security and key management best practices to meet compliance needs, while still realizing the benefits that hosting data in Microsoft Azure has to offer.

Encryption

Encryption Compliance Cloud GDPR

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

HL Chronicle of Data Protection

MAY 13, 2019

In the past two years, multiple state bills that have been introduced in the US to provide for cybersecurity requirements and standards to the insurance sector, with recent legislative activity taking place in particular within the States of Ohio, South Carolina, and Michigan. NYDFS: Setting a new bar for state cybersecurity regulation.

Insurance

Insurance Cybersecurity Data breaches Financial Services

New York SHIELD Act $600,000 settlement

Data Protection Report

FEBRUARY 8, 2022

According to the settlement agreement, the AG concluded that EyeMed’s security practices did not meet the requirements of the SHIELD Act with respect to four requirements: authentication, password management, logging and monitoring, and data retention in the email account. In total, information for approximately 2.1 SHIELD Act.

Passwords

Passwords Financial Services Authentication Insurance

Top GRC Tools & Software for 2021

eSecurity Planet

JANUARY 21, 2021

LogicManager’s GRC solution has specific use cases across financial services, education, government, healthcare, retail, and technology industries, among others. Insurance & claims management. It relies heavily on documenting all efforts to meet relevant standards, usually concerning data protection and privacy.

Compliance

Compliance Risk Government Retail

Top 10 Governance, Risk and Compliance (GRC) Vendors

eSecurity Planet

JANUARY 21, 2021

LogicManager’s GRC solution has specific use cases across financial services, education, government, healthcare, retail, and technology industries, among others. Insurance & claims management. It relies heavily on documenting all efforts to meet relevant standards, usually concerning data protection and privacy.

Compliance

Compliance Risk Government Retail

FTC Seeks Comment on Proposed Changes to GLBA Implementing Rules

HL Chronicle of Data Protection

MARCH 14, 2019

The CFPB’s amended Regulation P provides that FIs that meet certain conditions are exempt from the GLBA requirement to deliver an annual privacy notice. Specific information security measures. The proposed Rule is much more detailed in terms of security measures that FIs must implement.

Privacy

Privacy Risk Cybersecurity Information Security

US: Surviving the service provider data breach

DLA Piper Privacy Matters

JULY 30, 2019

Some states – such as Alabama, Massachusetts and New York (for financial services companies) – prescribe particular requirements of a “reasonable” cybersecurity program. At least nine states expressly extend these requirements to service providers. Proof of adequate cyber insurance coverage.

Data breaches

Data breaches Cybersecurity Financial Services Risk

Multi-Factor Authentication Best Practices & Solutions

eSecurity Planet

OCTOBER 5, 2021

A token acts as an electronic cryptographic key that unlocks the device or application, usually with an encrypted password or biometric data. Banking, financial services, and insurance industries constitute the largest share of adopters, with North America leading adoption, according to Orbis Research.

Authentication

Authentication Passwords Access Computer and Electronics

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

IT Governance

MARCH 11, 2024

Glosbe dictionary exposes almost 7 million records The multilingual online dictionary Glosbe left a MongoDB instance unsecured last year, exposing nearly 7 million users’ information, including personal data, encrypted passwords and social media identifiers. Glosbe did not reply, but the open instance was soon closed.

Data Privacy

Data Privacy Privacy Security Data breaches

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Data Matters

APRIL 23, 2018

Encrypting critical data assets. Boards should have adequate access to cybersecurity expertise, and discussions about cyber-risk management should be given regular and adequate time on board meeting agendas. Encrypting Critical Data Assets. Creating an enterprise-wide governance structure. Using appropriate access controls.

Cybersecurity

Cybersecurity Risk Passwords Authentication

Top Cybersecurity Startups to Watch in 2022

eSecurity Planet

JANUARY 11, 2022

GitGuardian is a developer favorite offering a secrets detection solution that scans source code to detect certificates, passwords, API keys, encryption keys, and more. Evervault is on a mission to make encrypting sensitive data seamless with its security toolkit for developers. Also read: Top Code Debugging and Code Security Tools.

Cybersecurity

Cybersecurity Cloud Compliance Analytics

Information Management Today

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Protecting Sensitive Data with Luna Key Broker for Microsoft Double Key Encryption

Trending Sources

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

New York SHIELD Act $600,000 settlement

Top GRC Tools & Software for 2021

Top 10 Governance, Risk and Compliance (GRC) Vendors

FTC Seeks Comment on Proposed Changes to GLBA Implementing Rules

US: Surviving the service provider data breach

Multi-Factor Authentication Best Practices & Solutions

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Top Cybersecurity Startups to Watch in 2022

Stay Connected