Compliance

Compliance news, analysis, research, how-to, opinion, and video.

pixelated clouds reflecting on building windows
information security

healthcare data breach ts

New HIPAA guidance addresses ransomware

The U.S. Department of Human Services has released new guidance for health care companies that focuses on the growing threat of ransomware, stresses the need for better education and regular backups, and confirms that a ransomware...

strategy

How to make IT governance work

In this free report prepared by the CIO Executive Council, three IT execs describe how they turn business partners into “informed co-investors of the IT budget.”

062116blogopposerule41new

Activists fighting expansion of government powers to hack private computers

Rights activists led by the Electronic Frontier Foundation and the Tor Project are rallying similar organizations and their constituents to step up opposition to a rules change backed by the U.S. Justice Department that would grant...

fedramp a path to operational excellence

FedRAMP: A challenging path to operational excellence for cloud providers

FedRAMP certification is a must to win any government cloud hosting contract, but it is far tougher to achieve than most cloud providers anticipated.

01 checklist

SIEM: 14 questions to ask before you buy

Today's SIEM technology boasts more brain power than ever, but many organizations fail to realize its full promise. Here are the key questions you need to ask to ensure the solution you choose will deliver.

Doing eDiscovery, Litigation Hold, and Addressing Journaling in Office 365

Office 365 provides a whole new series of tools to address Litigation Hold and eDiscovery of content that is very different than what organizations may have done in Exchange Servers on-premise in the past. As such, complete new best...

052616blog california legal fraud

Startup CEO agrees to $560K settlement to make long list of fraud allegations go away

Bob Ambrogi, who writes a terrific blog about technology and the law, today has posted remarkable details of a lawsuit settlement involving the head of a legal startup.

061815blog fcc logo

FCC formalizes massive fines for selling, using cell-phone jammers

Two years ago the FCC announced its intention to fine a Chinese electronics maker $34.9 million and a Florida man $48,000 for respectively selling and using illegal cell-phone jammers. Today those fines were made official.

nyse stock trading

Regulators: cybersecurity poses biggest risk to global financial system

Last week, the chair of the Securities and Exchange Commission called cybersecurity the biggest risk facing the global financial industry. The SEC promises to step up regulation and Swift itself is expected to launch a new cyber...

cloud computing pondering reflective mystery

How compliance can be an excuse to shun the cloud

Companies in heavily regulated industries say they can't embrace the cloud due to compliance. That's just an excuse.

outsourcing international workers

Is outsourcing IT worth the compliance risk?

While the feds have certainly put hurdles in place to prevent abuse, outsourcing IT in a highly regulated industry like banking may very well lead to higher standards and quality outcomes.

capitol dome government

Firms expect greater government cybersecurity oversight

The U.S. Senate recently proposed a cybersecurity disclosure bill that would require public companies to describe what cybersecurity expertise their boards have, or, if they don't have any, what steps the companies are taking to get...

Compliance

How to manage the risks and costs of software compliance

Software compliance can be a tricky – and expensive – challenge for most IT leaders. Luckily, tech solutions let you manage software assets.

healthcare data cloud

Georgia loves the cloud, but now needs it to be HIPAA compliant

Cloud service providers are evolving their platforms to handle personal health information that’s subject to HIPAA regulations, as seen in this case study about the state of Georgia’s Google cloud use.

bigdata problem thinkstock

5 reasons you need to hire a Chief Privacy Officer

Businesses are increasingly relying on data, but they're overlooking another key aspect of data: privacy. In order to keep up with the growing regulations surrounding data privacy, it may be time to hire a Chief Privacy Officer.

security trust

Defending against insider security threats hangs on trust

If your security strategy only considers malicious insiders when addressing the insider threat, you may be miscalculating the risk. Accidental incidents are nearly impossible to guard against.

compliance2

Cybersecurity much more than a compliance exercise

An overwhelming number of security executives view compliance as an effective strategy. But it’s not, and many CISOs need to rethink their priorities.

Will the European Union's new General Data Protection Regulation impact your business?  

The European Commission has approved the most stringent data privacy regulation anywhere and it is sure to impact businesses worldwide

Load More