compliance

Penn State Settles for $1.25M Over Failure to Comply With DoD, NASA Cybersecurity Requirements

by

October 24, 2024 at 06:54AM Penn State University will pay $1.25 million to settle claims of not meeting cybersecurity requirements for Department of Defense and NASA contracts. This settlement addresses alleged compliance failures related to security standards essential for these federal contracts. ### Meeting Takeaways: 1. **Settlement Amount**: Penn State University will pay $1.25 million. … Read more

Acronym Overdose – Navigating the Complex Data Security Landscape

by

October 19, 2024 at 06:00AM The article discusses the importance of understanding data security acronyms such as DLP and NIST. It highlights key drivers for data security, including regulatory compliance, intellectual property protection, and customer trust. It also outlines a structured approach to data security using the NIST framework and emphasizes the integration of various … Read more

The Ultimate DSPM Guide: Webinar on Building a Strong Data Security Posture

by

October 18, 2024 at 08:00AM The webinar “Building a Successful Data Security Posture Management Program” will discuss Data Security Posture Management (DSPM) as a solution for securing complex, scattered data. Attendees will learn how to uncover hidden data, protect against threats, and ensure compliance, featuring insights from security expert Benny Bloch. Register now. ### Takeaways … Read more

Port Raises $35M for its End-to-End Internal Developer Portal

by

October 16, 2024 at 05:23PM Port announced $35 million in Series B funding, totaling $58 million to date, aimed at expanding its internal developer portal platform. With a sevenfold revenue increase and major clients like LG and GitHub, Port enhances developer productivity and compliance through an adaptable platform integrating AI capabilities to streamline workflows. ### … Read more

CISOs’ Privacy Responsibilities Keep Growing

by

October 15, 2024 at 09:39AM Mark Eggleston highlights the increasing responsibility of CISOs in managing privacy programs within organizations due to regulatory pressures and the convergence of privacy and cybersecurity. As privacy laws evolve, collaboration with legal and compliance teams is essential. CISOs must adapt their skills to ensure effective privacy management alongside traditional security … Read more

Harnessing AI for Enhanced Security

by

October 8, 2024 at 04:42PM As cyber threats escalate, innovative cybersecurity solutions are crucial. Trend Micro’s collaboration with NVIDIA has led to significant advancements in AI-driven security enhancements, such as threat detection and response capabilities. Their emphasis on “AI for security, security for AI” underscores their commitment to leveraging AI for advanced threat detection and … Read more

Navigating the Complexities & Security Risks of Multicloud Management

by

October 3, 2024 at 10:02AM Improper cloud security has resulted in costly breaches for organizations such as Toyota and Accenture, highlighting the significant impact of cloud security failures. As multicloud strategies become more prevalent, the complexities of managing multiple cloud environments pose challenges in governance, security, and compatibility, necessitating robust cloud security practices and strategic … Read more

EU kicks off an inquiry into Google’s AI model

by

September 12, 2024 at 08:24AM Ireland’s Data Protection Commission (DPC) has initiated a cross-border inquiry into Google’s AI model to ensure compliance with EU regulations. The focus is on Google’s Data Protection Impact Assessment (DPIA) and its processing of personal data under the General Data Protection Regulation (GDPR). This reflects broader efforts by EU and … Read more

Compliance and Risk Management Startup Datricks Raises $15 Million

by

September 11, 2024 at 11:24AM Datricks, a compliance and risk management startup, has secured $15 million in Series A funding led by Team8’s venture capital arm, with additional investments from SAP and Jerusalem Venture Partners. The Tel Aviv-based startup, founded in 2019, offers an AI-based platform for financial risk detection, which has already prevented significant … Read more

Shining a Light on Shadow Apps: The Invisible Gateway to SaaS Data Breaches

by

September 10, 2024 at 07:39AM Shadow apps, a subset of Shadow IT, are SaaS applications procured without the security team’s knowledge. They may lack essential security measures and compliance standards, posing risks such as data leaks and regulatory violations. Standalone and integrated shadow apps both expand the company’s attack surface. SaaS Security Posture Management (SSPM) … Read more