- December 10, 2020
HHS wants to modify the HIPAA privacy rule to encourage better care coordination and make it easier for patients to access their health data.
- July 16, 2019
Compliance with the SEC's new Inline XBRL requirements will change financial reporting processes. The benefits are there, but not everyone is optimistic about the change.
- May 30, 2019
Seal Software launched version 7 of its contract analytics software, dubbed Seal 7, touted to provide a more seamless user experience, scalability and extensibility.
- December 20, 2018
Cybersecurity vulnerabilities associated with PCs often overlook BIOS. Read for strategies to offset these threats and for preventing unauthorized BIOS modifications.
- November 21, 2018
Panelists at Infosec North America advised those charged with third-party vendor management to perform due diligence and assess the innate risk vendors create for business processes.
Sponsored by Microsoft - The ability to quickly and accurately leverage insights and intelligence is becoming more and more critical for organizations looking to create personalized and differentiated experiences for customers, employees and everyone else across their supply chains and ecosystems. See More
Sponsored by HPE - Security continues to be a major source of concern as organizations move more workloads and applications into the cloud. According to the Flexera 2020 State of the Cloud Report, security is the top cloud challenge for decision-makers, cited by 83% of respondents. This situation has been exacerbated by COVID-19 and the expansion of remote work, as well as adoption of multicloud strategies by a large percentage of organizations. See More
Sponsored by Microsoft - With the shift to remote work caused by COVID-19, Security Operations Centers (SOCs) are under more pressure than ever, particularly with many SOC workers also working from home. Today’s reality is that SOCs have to embrace a new way of working in order to keep their analysts and admins effective and to ensure that morale doesn’t collapse under the weight of too much work and pressure. See More
Sponsored by Dell Technologies - Increased complexity is one of the biggest challenges facing IT teams in building and managing multicloud environments. Using different management tools for different platforms, whether private or public clouds, makes it harder—if not impossible—to effectively manage costs, security, governance, performance, compliance and availability. See More
- July 27, 2018
With sustainability being a huge driver of modern business development, protecting consumers' cyber- and physical security is an essential element when designing smart cities and venues.
- March 30, 2018
As online trading and digital finance becomes the norm, updated SEC compliance regulations target these transactions in an effort to improve digital asset security.
- February 09, 2018
With enforcement of the EU General Data Protection Regulation (GDPR) in the offing, organizations are busy preparing for a new era in privacy regulation. But UK companies that are Cyber Essentials ...
- January 31, 2018
There is a new moonshot in cybersecurity, and Google's parent company is calling it Chronicle. Alphabet's cybersecurity business unit launched last week and plans on selling cybersecurity services ...
- December 15, 2017
Despite recent high profile data security incidents, it seems business leaders still are not acknowledging their IT vulnerabilities: In a recent cybersecurity study, 20% of survey respondents cited ...
- November 30, 2017
Cybersecurity incidents remain a growing risk for the enterprise in today's digital world. As a result, an organization's cybersecurity strategy usually isn't just about prevention anymore, but ...
- November 14, 2017
Panelists speaking at a session titled Right Hand, Left Hand: Transparency, Communication and Conflict at the recent Cambridge Cyber Summit agreed that the government and private industry must ...
- October 23, 2017
At the 2017 ISSA International Conference, experts urged companies to recruit from existing IT staff to confront the looming cybersecurity talent shortage.
- September 19, 2017
As the use of drones continues to expand, regulators are trying to make sure rules governing the burgeoning drone industry ensure safety, but don't hinder innovation.
- June 22, 2017
Regulatory compliance initiatives remain at the top of GRC professionals' lists of priorities this year, according to TechTarget's annual IT Priorities survey.
- March 31, 2017
InfoSec should start talking to the business in the language of security risk,Tom Kartanowicz, head of information security at Natixis, North America, told the audience at the recent CDM Media CISO ...
- December 19, 2016
After the U.S. was allegedly plagued by Russian cyberattacks during the election, members of both the Democratic and Republican parties are now calling for investigations. Also in recent GRC news: ...
- December 01, 2016
The future of regulatory compliance is under scrutiny as President-elect Donald Trump's administration continues the transition process. Also in recent GRC news: Hackers demanded ransom after ...
- November 30, 2016
In today's threat-filled environment, money is not always a hacker's prime motivation. They could be driven by political reasons or just want to embarrass organizations. But irrespective of their ...
- November 22, 2016
The massive DDoS attack on Oct. 21 was a harbinger of bad news, according to cybersecurity expert Bryce Austin. It is a prime example that the IoT makes cybercriminals increasingly capable of ...
- November 17, 2016
Will President-elect Trump's transition team follow through on promises to get rid of Dodd-Frank compliance regulations? Also in recent GRC news, tech companies urge Trump to back encryption; and ...
- November 03, 2016
New privacy rules passed by the FCC could influence AT&T's plans for its acquisition of Time Warner. Also in recent GRC news, the internet of things proves useful to hackers and privacy ...
- October 31, 2016
Records management is more vital than ever to business success, but not enough organizations care about it, according to Rick Tucker. To prove it, Tucker, vice president of sales and marketing at ...
- October 20, 2016
Government intrusion of data privacy continues to be a global issue, as a British court recently ruled that UK security agencies illegally collected citizens' data for 17 years. Also in recent GRC ...
- October 06, 2016
Snap, Inc., the company behind the popular photo and video messaging app Snapchat, is releasing a pair of photo and video-capturing glasses that have some worried about the possible privacy ...
- September 21, 2016
When Anndorie Cromar received a call from Child Protective Services that they were coming to take her children away, she was flabbergasted. She was unaware that her medical identity was stolen and ...
- September 20, 2016
Wells Fargo has been fined $185 million and fired more than 5000 employees after the discovery of an illegal sales push that duped customers for years. Also in recent GRC news, U.S. businesses with ...
- September 16, 2016
Last week, San Francisco-based Wells Fargo bank was fined $185 million because employees opened two million unauthorized bank and credit card accounts. About 5,300 employees associated with this ...
- September 08, 2016
The E.U. has ordered Ireland to collect more than $14B in taxes from Apple that, according to the E.U., have gone unpaid for years. Also in recent GRC news, state voter registration system breaches ...
- August 24, 2016
After a Democratic National Committee email leak, security experts are warning against a possible voting machine hack come November. Also in GRC news, the New York branch of one of Taiwan's largest ...
- August 15, 2016
Investors are nervous about bitcoin's future value after Bitfinex, one of the world's "big four" bitcoin exchanges, was hacked and had nearly $65 million worth of bitcoins stolen. Also in recent ...
- July 28, 2016
The Privacy Shield data transfer pact finally received the green light from U.S. and EU privacy regulators, and businesses can begin registering to comply with the framework Aug. 1. Also in recent ...
- July 15, 2016
Digitization requires big changes to companies' strategic processes, and security is no different: In a recent report, Gartner predicts that 60% of digital businesses will experience major service ...
- July 13, 2016
New Jersey's new chief technology officer has announced plans to boost data security by ramping up compliance monitoring in the state. In other GRC news, the Consumer Financial Protection Bureau ...
- June 24, 2016
Blockchain technology, a distributed ledger that underpins cryptocurrencies, has become a huge factor the financial services space as virtual currencies such as bitcoin have become increasingly popular. The rise of blockchain could radically change ...
- June 17, 2016
Late last month, the NFL Players Association informed its member teams that a Washington Redskins trainer's laptop containing players' medical records was stolen and that it would collaborate with ...
- May 31, 2016
The time isn’t far away when everything in our lives, from furniture to coffee pots, will have the ability to be "smart." Various reports estimate that there will be anywhere between 30 to 200 ...
- May 05, 2016
Details surrounding the updated Payment Card Industry Data Security Standard show that version 3.2 includes new multifactor authentication and encryption requirements. Also in recent GRC news: SEC ...
- April 15, 2016
The FCC's newly proposed privacy protection rules requires broadband and wireless providers to obtain consumer consent before collecting and sharing their data, but some are concerned this approach ...
- March 31, 2016
Some 1,500 cybersecurity professionals gathered at this week's SecureWorld Boston conference that featured discussions with leading industry experts about today's best cybersecurity practices. The ...
- March 08, 2016
When General Data Protection Regulation -- a new EU-wide data protection framework that will replace Safe Harbor -- was introduced by European Union on December 2015, global companies such as Adobe ...
- February 19, 2016
This week, Apple chief Tim Cook said in a letter to the company's customers that it won't give in to the FBI's demand to create an iPhone backdoor. Plus, the number of resolved FCPA enforcement ...
- February 16, 2016
Just as companies were getting a handle on mobility, the Internet of Things (IoT) business is officially booming: Gartner Inc. predicts there will be 6.4 billion connected "things" used worldwide in 2016. Connected consumer devices get most of the ...
- February 05, 2016
The U.S. Securities and Exchange commission announced last week that global banks Barclays and Credit Suisse would pay a record total of more than $154 million to settle allegations over "dark ...
- January 07, 2016
Despite several HIPAA violations, recent data analysis found U.S. healthcare providers such as CVS and the VA face few punitive actions. Also in recent GRC headlines: Companies have two more years ...
- December 29, 2015
We've rounded up the top 10 governance, risk and compliance stories of the year, with timely advice about GRC strategy, 2015 compliance challenges and best practices for overcoming data security issues.
- December 09, 2015
The governor of New York has introduced new state banking rules designed to curb money laundering and block terrorism funding. Also in recent GRC news: Most healthcare organizations lack ...
- December 03, 2015
New laws encourage cybersecurity information sharing between the public and private sector, but will the data protection measures infringe on privacy?
- December 02, 2015
As organizations' data threats and regulatory demands increase, GRC professionals are seeing their IT compliance management skill sets become highly prized across industries.
- November 25, 2015
In the wake of the horrific attacks in Paris earlier this month, government and intelligence officials pointed a finger at end-to-end encryption (E2EE) and how it enabled attackers to "go dark" -- ...
- November 18, 2015
(This blog post was written by Diane K. Carlisle, executive director of content at ARMA International.) Day by day, effective information governance (IG) is made more urgent and more complicated by ...
- November 12, 2015
In recent regulatory compliance news, the Federal Reserve Chairwoman testified before a House panel that very large U.S. banks still experience "substantial" GRC management failures; recent ...
- October 29, 2015
This week, Goldman Sachs agreed to pay a $50 million fine to settle a case in which a former employee leaked confidential information from the New York Fed. Also in the news: Bristol-Myers Squibb ...
- October 15, 2015
In part one of this blog post, we unpack the drivers behind the surge of demand on compliance investments and skilled staff, including new agencies that take a behavior-based approached to ...
- October 15, 2015
Boards of directors are increasingly seeing the value of regulatory compliance, as the past year has seen a worldwide spike in compliance spending and the hiring of skilled compliance staff, ...
- September 30, 2015
Wearable fitness tracker company Fitbit recently announced that its devices are now HIPAA-compliant, broadening the types of businesses it aims to work with. Also in recent GRC news: CFOs report ...
- September 16, 2015
The Second U.S. Circuit Court last week decided that whistleblowers who report internally before going to the SEC are covered by Dodd-Frank's anti-retaliation rules. In other recent GRC headlines: ...
- September 02, 2015
Lawyers say Apple CEO Tim Cook may have flouted the Securities and Exchange Commission's fair-disclosure regulation when he sent a CNBC correspondent an email containing company performance ...
- August 27, 2015
(This blog post was written by Diane K. Carlisle, executive director of content at ARMA International.) So, your attempt to manage the governance, risk, and compliance (GRC) program with a series ...
- August 19, 2015
The U.S. Securities and Exchange Commission (SEC) announced this month that it has approved a contentious pay-ratio rule first introduced by the Dodd-Frank Act five years ago. Also in recent ...
- August 05, 2015
The U.S. Justice Department is in the process of taking on a compliance specialist to help determine whether to prosecute companies charged with foreign bribery. Also in recent GRC news: Mead ...
- July 31, 2015
Numerous regulations were introduced worldwide to make financial services institutions more resilient following the monetary crisis of 2007 to 2008. Now, these regulations, which global management ...
- July 22, 2015
Five years after the Dodd-Frank Act was enacted, the creators of the law contemplate the wide-ranging legislation's impact on the financial and banking industries. Also in recent GRC news: The SEC ...
- July 09, 2015
SEC commissioner Luis Aguilar strongly urged his colleagues at a cybersecurity conference last month to push Reg SCI up on their priority lists, particularly in terms of widening the regulation's ...
- July 06, 2015
#GRCChat participants discuss how cybersecurity legislation could hurt data privacy and what personal information protections should be included in the new rules.
- July 06, 2015
Honda has revamped its regulatory compliance reporting processes after information technology failures led to record fines for TREAD Act violations.
- June 29, 2015
The MIT Sloan School of Management has launched a consortium that touts interdisciplinary research and cooperation as keys to improving cybersecurity.
- June 25, 2015
The U.S. government data breach announced last week began a year ago, giving the perpetrators plenty of time to access federal employees' personal information, according to the NSA. Also in recent ...
- June 12, 2015
(This blog post was written by Aislyn Fredsall, an editorial assistant for the TechTarget CIO media group through Northeastern University's co-op program.) Is security no longer a major concern for ...
- June 11, 2015
U.S. officials say the recent hack of government computer systems affects 4 million current and former federal employees, but the breach could have impacted private citizens, too. Also in the news: ...
- June 05, 2015
(This blog post was written by Jeff Whited, senior manager of education development at ARMA International.) By leveraging big data as an asset, organizations are tapping new business efficiencies ...
- May 28, 2015
If recent headlines are any indication, Wall Street banks and other financial institutions continue to garner poor marks when it comes to regulatory compliance: Earlier this month, several major ...
- May 14, 2015
In this #GRCChat, participants discuss the causes behind information security breaches and how enterprises can protect against them to improve IT security practices.
- May 12, 2015
In this #GRCChat, participants discuss how changes in technology like consumerization and evolving security threats affect GRC management and consider who should be responsible for that management.
- May 06, 2015
The Securities and Exchange Commission (SEC) is pushing to provide U.S. shareholders with better metrics to compare executive pay against company performance. In other GRC headlines from recent ...
- April 30, 2015
Information sharing plays a big role in proposed cybersecurity legislation, but will the new measures hurt data privacy? Discuss with us during #GRChat May 7 at 12 p.m. EST.
- April 28, 2015
Companies operating in the digital age generate more data than ever before. Storage costs also remain relatively cheap, so many businesses keep data "just in case" it is needed for business purposes or to settle a compliance issue. With so much data...
- April 22, 2015
Much to the chagrin of privacy advocates, U.S. legislators have been pushing to pass a bill to improve cyberthreat intelligence sharing before discussing National Security Agency (NSA) surveillance ...
- April 08, 2015
Following the recent streak of high-profile cyberattacks on U.S. companies, the Obama administration last week unveiled a program that would impose sanctions on individuals or groups overseas that ...
- March 26, 2015
The FBI's quest to expand its hacking authority moved forward last week: A judicial advisory panel approved a rule change regarding how flexible judges can be in granting search warrants outside ...
- March 20, 2015
What GRC management best practices can keep business data compliant while reducing consumer risk? Discuss with us during #GRCChat March 26 at 12 p.m. EST.
- March 17, 2015
Regulation SCI marks a new era for SEC oversight of companies' IT compliance processes, and information governance expert Jeffrey Ritter discusses how in this Q&A.
- March 17, 2015
The FCC gave new net neutrality regulations the go-ahead, but the battle for an open Internet is hardly over. In this #GRCChat recap, find out whether the new regulations mean good news for innovation and consumer privacy.
- March 11, 2015
Data breaches have been intensifying in recent years, but security expert Benjamin Dean argues that many companies still lack motivation to invest in more robust information security. Also in ...
- February 26, 2015
AT&T's has begun rollout of a fiber-optic Internet service that furnishes customers with high-speed access, but they must pay an extra monthly charge if they want to keep their browsing habits ...
- February 11, 2015
In a bold effort to ensure net neutrality, FCC Chairman Tom Wheeler has proposed a new set of rules that would treat the Internet as a public utility and prohibit pay-to-play fast lanes. Also in ...
- February 05, 2015
Have you considered the GRC implications of wearables in the workplace? In this #GRCChat recap, participants consider the impact of wearables on established policies and how businesses can ensure data security and privacy.
- January 29, 2015
In this #GRCChat, find out what GRC features to keep top of mind when designing a BYOD security policy -- and how to ensure employees are on board.
- January 20, 2015
Hackers may have found a way to commercialize their services as individuals begin to seek "hackers for hire" to carry out low-profile cyberintrusions. In other recent governance, risk and ...
- January 20, 2015
There are many nebulous enterprise GRC and security terms that need to be scrapped. In this #GRCChat recap, SearchCompliance followers share the lingo they can't wait to jettison this year.
- January 19, 2015
This could be a big year for GRC technologies. #GRCChat-ters predict which tools and processes will continue their upward trend in 2015 and which will wane.
- January 13, 2015
Can we leave the "year of the breach" title to 2014? In this #GRCChat recap, participants shared their enterprise GRC and security predictions for 2015.
- January 07, 2015
Business cybersecurity -- or the lack thereof -- continued to make headlines in the past few weeks as more U.S. private-sector firms consider counteroffensive tactics against attackers. Also in ...
- January 07, 2015
A new year means a fresh start. In this #GRCChat recap, participants assess their current IT challenges and share their GRC 2015 resolutions.
- January 06, 2015
Information security is moving up the priority list at many organizations. In this #GRCChat recap, participants look back at 2014 to discuss their top IT GRC regrets.
- July 31, 2014
Increasingly complicated compliance mandates have led some businesses to implement automated processes to save resources. Participants in July's #GRCChat said compliance automation can assist data management, but also warned of unintended ...
- July 03, 2014
Are you ready to pay to play if the FCC's net neutrality ruling stands? #GRCchat participants share how a usage-based pricing structure could negatively impact small business and innovation.
- June 25, 2014
#GRCchat participants discussed the FCC net neutrality proposal and what it might mean for companies, ISPs and consumers in this recap of SearchCompliance's monthly Twitter chat.
- June 06, 2014
May #GRCchat participants share top information security threats and how to prevent data breaches caused by the biggest culprits: employees.
- May 20, 2014
In this #GRCchat recap, a former Federal Communications Commission CIO discusses how a quantitative risk profile can mitigate financial risk.