- May 05, 2016
Details surrounding the updated Payment Card Industry Data Security Standard show that version 3.2 includes new multifactor authentication and encryption requirements. Also in recent GRC news: SEC ...
- February 05, 2016
The U.S. Securities and Exchange commission announced last week that global banks Barclays and Credit Suisse would pay a record total of more than $154 million to settle allegations over "dark ...
- January 07, 2016
Despite several HIPAA violations, recent data analysis found U.S. healthcare providers such as CVS and the VA face few punitive actions. Also in recent GRC headlines: Companies have two more years ...
- November 03, 2014
Compliance with PCI DSS regulations is only the start of a sound security strategy. In this #GRCChat, participants discuss additional measures to protect data and the complexities around mobile payment applications.
- October 29, 2014
In the wake of several high-profile data breaches, #GRCchat participants discuss whether meeting PCI DSS standards is an effective step toward better customer data protection.
- December 14, 2011
As Carrier IQ defends its data collection processes, some experts say the fact that the information being collected exists at all is a potential privacy and compliance violation.
- January 12, 2011
In 2011, compliance officers are focusing on virtualization compliance with PCI DSS 2.0 standards, and governance, risk and compliance products.
- September 28, 2009
California data breach notification law sponsor State Sen. Joe Simitian discusses what his SB 20 amendment means for privacy and whether state laws should give way to a federal law.
- July 20, 2009
Expert Richard Mackey explains how to implement compliance with the Massachusetts data protection act.
- July 17, 2009
State officials and compliance officers explore what compliance with the Massachusetts data protection law will mean.
- June 25, 2009
The question of whether an enterprise can leverage economies of scale with the cloud and still be able to address cloud computing compliance remains serious to IT practitioners.
- June 18, 2009
Retailers are revolting against the PCI Council, calling for reform of PCI DSS compliance regulations, but security is simply part of the cost of doing business in today's world.
- June 01, 2009
Software that helps optimize an organization's carbon footprint, water usage, energy usage and waste management can improve operations and save an enterprise real money.
- April 23, 2009
The Senate's Internet "kill switch" bill calls for new federal security standards, certification and licensing mandates that would be overkill and hard to implement, experts say.
- March 31, 2009
Two panels shed light on the compliance requirements, impact and potential liability of 201 CMR 17.00, the tough, comprehensive new Massachusetts data protection law.
- February 05, 2009
Regulatory compliance will remain a significant area of IT spending in 2009, despite widespread budget cutting, according to a new survey of senior IT managers. High on the compliance shopping list: backup, archive and network upgrades.