Tag: Cybersecurity Legislation

One year in, what have we learned about how General Data Protection Regulation (GDPR) requirements have affected organizations?

This update can be seen as part of a wider trend in data privacy regulations where guidelines on breach reporting and incident response documentation are becoming more specific.

For the enterprise responsible for protecting customers' PII, should passwords be stored at all — even encrypted?

Companies are implementing encryption, but most defenses remain piecemeal. How can security leaders improve protection without sacrificing performance?

For the financial services industry, being transparent and demonstrating a mature, integrated business and security model is critical to build trust in today's evolving threat landscape.

To prepare for the CCPA and other upcoming data privacy regulations, start by applying the best practices and frameworks you used to achieve GDPR readiness when the regulation took effect last May.

Organizations adopting NIST 800-53 should understand how upcoming changes will affect senior leadership accountability, data privacy and third-party assessments.

Similar to the GDPR, you can approach the NIS Directive as a roadblock or a nuisance, or you can consider it an excellent opportunity to improve your security posture.

In a world where technology and culture are one and the same, public-interest technologists are critical to a better future.

The U.S. Department of Health and Human Services (HHS) released voluntary healthcare cybersecurity practices to help medical organizations strengthen their security posture.