Compliance news, analysis, research, how-to, opinion, and video.

cloud map
security log monitoring

dhs security

Beyond logging: Using SIEM to combat security, compliance issues

Perimeter security simply isn't enough anymore. We need a holistic view of our IT infrastructures; SIEM provides that.

gottfried leibbrandt ceo swift sibos 2016

Swift CEO reveals three more failed attacks on banking network

Banks stopped three new attempts to abuse the Swift financial transfer network this summer, its CEO Gottfried Leibbrandt said Monday, as he announced Swift's plan to impose tighter security controls on its customers.

02 bank teller

NY regulation aims to raise bank security standards

Next week, New York State will begin a 45-day public comment period on its new financial industry cybersecurity regulation -- and, so far, security experts have a favorable view of the proposal

hpe media gallery image 3

Plan now for the EU's privacy regulation revolution, says HPE exec

The cost of complying with the European Union's General Data Protection Regulation might seem like something best deferred until it enters force in 2018 -- but working on compliance could boost profit, not reduce it, say some vendors....

protecting data

How to protect your mission-critical information

A new report by the Information Security Forum (ISF) outlines the steps you can take to determine your mission-critical information assets &and create customized plans for protecting them.

corporate meeting teamwork collaboration

Newly public Twilio moves up the food chain

Twilio's enterprise plan addresses enterprise application development needs such as security, compliance and administration control.

misunderstood contracts disagreement argue blame

5 commonly misunderstood compliance terms

Understanding the terms is critical given the complexity of compliance, and will help you when analyzing the best technology solutions to manage compliance as a whole

pixelated clouds reflecting on building windows

Experts challenge Skyhigh's patent for cloud-based encryption gateway

Skyhigh Networks, Inc., announced today that it has received a patent for using a hosted gateway to encrypt and decrypt data moving between users and cloud services such as Office 365, but some experts say that the technology new...

information security

Your next 10 security pain points

New security issues that companies need to pay attention to include container technology, data loss prevention, regulatory compliance and skills development.

healthcare data breach ts

New HIPAA guidance addresses ransomware

The U.S. Department of Human Services has released new guidance for health care companies that focuses on the growing threat of ransomware, stresses the need for better education and regular backups, and confirms that a ransomware...


How to make IT governance work

In this free report prepared by the CIO Executive Council, three IT execs describe how they turn business partners into “informed co-investors of the IT budget.”


Activists fighting expansion of government powers to hack private computers

Rights activists led by the Electronic Frontier Foundation and the Tor Project are rallying similar organizations and their constituents to step up opposition to a rules change backed by the U.S. Justice Department that would grant...

fedramp a path to operational excellence

FedRAMP: A challenging path to operational excellence for cloud providers

FedRAMP certification is a must to win any government cloud hosting contract, but it is far tougher to achieve than most cloud providers anticipated.

01 checklist

SIEM: 14 questions to ask before you buy

Today's SIEM technology boasts more brain power than ever, but many organizations fail to realize its full promise. Here are the key questions you need to ask to ensure the solution you choose will deliver.

Doing eDiscovery, Litigation Hold, and Addressing Journaling in Office 365

Office 365 provides a whole new series of tools to address Litigation Hold and eDiscovery of content that is very different than what organizations may have done in Exchange Servers on-premise in the past. As such, complete new best...

052616blog california legal fraud

Startup CEO agrees to $560K settlement to make long list of fraud allegations go away

Bob Ambrogi, who writes a terrific blog about technology and the law, today has posted remarkable details of a lawsuit settlement involving the head of a legal startup.

061815blog fcc logo

FCC formalizes massive fines for selling, using cell-phone jammers

Two years ago the FCC announced its intention to fine a Chinese electronics maker $34.9 million and a Florida man $48,000 for respectively selling and using illegal cell-phone jammers. Today those fines were made official.

nyse stock trading

Regulators: cybersecurity poses biggest risk to global financial system

Last week, the chair of the Securities and Exchange Commission called cybersecurity the biggest risk facing the global financial industry. The SEC promises to step up regulation and Swift itself is expected to launch a new cyber...

Load More