compliance – Page 7

Embracing the Cloud: Revolutionizing Privileged Access Management with One Identity PAM Essentials

March 11, 2024 by Xynik

March 11, 2024 at 10:51AM The significance of robust Privileged Access Management (PAM) in the face of cyber threats is emphasized. One Identity PAM Essentials, a SaaS-based solution, prioritizes security, manageability, and compliance. It offers a user-centric design, simplified approach, cost-effectiveness, cloud-native architecture, and seamless integration with OneLogin. This represents a shift in PAM tools, … Read more

Everything you need to know about NIS2

February 26, 2024 by Xynik

February 26, 2024 at 09:16AM The NIS2 Directive, effective October 2024, aims to enhance cybersecurity for critical infrastructure. It widens security requirements, extends coverage to more organizations and sectors, and imposes stricter measures and penalties. A webinar on 28 February will feature experts discussing the directive’s implications for application security and offering compliance advice. Register … Read more

How CISOs Balance Business Growth, Security in Cyber-Threat Landscape

February 21, 2024 by Xynik

February 21, 2024 at 09:58AM The cyber-threat landscape is rapidly evolving, posing challenges for businesses of all sizes. Data breach incidents and costs are increasing, especially for small businesses, forcing compliance and security expenditures. Executives face the dilemma of balancing business growth with cybersecurity amidst a complex threat environment. Strategic cybersecurity investments, aligned with business … Read more

A common goal for European cyber security

February 21, 2024 by Xynik

February 21, 2024 at 03:30AM The European Union introduced the original Network and Information Security (NIS) Directive in 2016 in response to growing cybersecurity threats. The upcoming NIS2 directive, effective in October 2024, expands security requirements for over 160,000 companies, with non-compliance fines reaching €10 million. Organizations are urged to prepare for increased obligations and … Read more

Denmark orders schools to stop sending student data to Google

February 7, 2024 by Xynik

February 7, 2024 at 03:18PM Danish data protection authority orders 53 municipalities to stop sending student data to Google without a legal basis. They must document data processing, ensure Google complies with regulations, and limit data use to authorized purposes. The authority allows use of Google Workspace for educational services but restricts other purposes. Municipalities … Read more

How to Align Your Incident Response Practices With the New SEC Disclosure Rules

January 31, 2024 by Xynik

January 31, 2024 at 07:42AM Summary: Publicly traded organizations must comply with the SEC incident disclosure regulations by reporting cyber incidents deemed “material” within four business days. The new rules stress the importance of well-practiced IR programs and comprehensive cyber IR plans. However, traditional IR simulations can be challenging and costly, prompting the need for … Read more

Panorays Study Finds 94% of CISOs Are Concerned About Third-party Cyber Threats, Yet Only 3% Have Implemented Security Measures

January 25, 2024 by Xynik

January 25, 2024 at 06:10PM Panorays’ 2024 CISO Survey of 200 CISOs reveals that 94% are concerned about third-party cybersecurity threats, with 65% anticipating an increase in third-party cyber risk budget. Only 3% have already implemented a third-party cyber risk management solution, and 33% plan to do so in 2024. CISOs prioritize AI-driven solutions and … Read more

Savvy Launches Identity-First Security Offering to Combat Toxic Combinations Driving SaaS Risk

January 17, 2024 by Xynik

January 17, 2024 at 07:36AM Savvy, a SaaS security platform provider, has introduced Identity-First Security to address risks stemming from identity access management permissions, user behavior, and business context. The offering aims to combat SaaS application-related security risks by providing comprehensive visibility and automated security guardrails to guide users in real time. For more details, … Read more

Kenyan Issues New Guidance for Protecting Personal Data

January 11, 2024 by Xynik

January 11, 2024 at 10:36AM Kenya’s Office of the Data Protection Commissioner released new guidance notes for data protection in education, communications, and digital credit sectors, as well as a general guide for processing health data. The Data Protection Act, enacted in 2019, has led to significant enforcement, with fines issued for violations. Awareness efforts … Read more

Localization Mandates, AI Regs to Pose Major Data Challenges in 2024

January 2, 2024 by Xynik

January 2, 2024 at 10:57AM In 2024, companies will face significant challenges in data security, protection, and compliance. Governments are tightening regulations and enforcing data protection laws, impacting companies globally. The rush to regulate AI and the complexities of data localization pose additional challenges. Businesses need to adapt to evolving regulations and technological landscapes to … Read more