Regulatory compliance audits news, help and research

Regulatory compliance audits News

July 22, 2019 22 Jul'19
Equifax to pay up to $700 million in data breach settlement

Under the settlement with the FTC and state attorneys general, Equifax will fork over at least $575 million in civil penalties and provide credit monitoring services to consumers.
April 15, 2016 15 Apr'16
FCC's consumer privacy proposal: Harmful to innovation?

The FCC's newly proposed privacy protection rules requires broadband and wireless providers to obtain consumer consent before collecting and sharing their data, but some are concerned this approach ...
October 21, 2009 21 Oct'09
ISO 27001 certification not enough for verifying SaaS, cloud security

As SaaS and cloud vendors promote security standards like ISO 27001 or SAS 70, experts urge users to delve deeper. What matters is that vendors meet your security needs.
July 28, 2009 28 Jul'09
How CISOs can leverage the internal audit process

Traditionally adversaries, CISOs and auditors can leverage each other's skills to move toward a risk-based approach to compliance.

Bring yourself up to speed with our introductory content

compliance risk

Compliance risk is an organization's potential exposure to legal penalties, financial forfeiture and material loss, resulting from its failure to act in accordance with industry laws and regulations, internal policies or prescribed best practices. Continue Reading
What does your backup and recovery audit checklist need?

This backup and recovery audit checklist offers a comprehensive group of controls and evidence examples to get you ready for the important process of IT auditing. Continue Reading
How to conduct an IoT audit for compliance

To effectively prepare for and conduct an IoT audit, organizations need to understand which IT controls are in scope. Get actionable guidance on the audit process in this tip. Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

Fighting PCI non-compliance could require new frameworks, zero trust

Falling PCI DSS compliance rates could force the PCI Security Standards Council to be more open to other regulatory frameworks and make enterprises aim higher in terms of data security. Could zero trust be part of the solution? Continue Reading
Assemble tools to address IT compliance standards up the stack

The right set of IT compliance tools helps IT operations admins keep pace with rapidly evolving -- and increasing -- security regulations. Continue Reading
How will the new EU-U.S. data transfer policy change governance?

The new transatlantic data transfer policy framework may require companies to rethink governance processes to follow its security and privacy protocols. Continue Reading

Learn to apply best practices and optimize your operations.

Prep a compliance audit checklist that auditors want to see

Think your enterprise is ready for its compliance audit? Check off key points in this compliance audit preparation checklist to ensure it has all the resources needed to help auditors do their job. Continue Reading
Best practices for backup audit preparation

What are must-have items to satisfy an audit of your backup platform? Why is auditing important? Discover how the audit process can help your organization improve. Continue Reading
5 steps to determine residual risk during the assessment process

Even the best security controls have data management gaps that create risk. Here are steps to identify and offset residual risk during an assessment. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

4 GDPR strategy tips to bring IT processes up to speed

The GDPR deadline has long passed, but U.S. companies remain behind on compliance. Experts provide GDPR compliance tips to make sure IT is on the right side of the privacy rules. Continue Reading
Data breach litigation: What enterprises should know

Data breach litigation can be highly detrimental to an organization that just suffered a major security incident. Find out what kinds of legal action enterprises could face in the event of a data breach. Continue Reading
Curb on-demand self-service risks with cloud inventory management

Shadow IT can create compliance and security issues, as well as increase cloud costs. Take back control with these best practices for cloud inventory management. Continue Reading