compliance

Announcing Fortanix Key Insight — A Solution to Discover and Remediate Data Security Risks in Hybrid Multicloud Environments

by

November 29, 2023 at 05:50PM Fortanix Inc. introduces Key Insight for its DSM platform, a unique tool to discover, assess, and remediate risks in encryption key management across multicloud environments, providing a data-centric security solution with improved compliance and risk posture. To be showcased at AWS re:Invent 2023. Takeaways from Meeting Notes: 1. Fortanix Inc. … Read more

Kiteworks’ Maytech Acquisition Reaffirms Commitment to UK Market

by

November 22, 2023 at 03:36PM Kiteworks, a company focused on data privacy and compliance, announced its merger with Maytech, a provider of data file transfer solutions. The merger strengthens Kiteworks’ position in the UK market and expands its offering to Maytech customers. The strategic move combines technological strengths and resources, fostering innovation and accelerating research … Read more

LLM Security Startup Lasso Emerges From Stealth Mode

by

November 21, 2023 at 10:21AM Stealth mode security startup Lasso Security has raised $6 million in seed funding, led by Entrée Capital and with participation from Samsung Next. The Tel Aviv-based company is developing technology to address cyber threats faced by generative AI and large language models, aiming to protect businesses that use these technologies. … Read more

What Healthcare Cybersecurity Leaders Should Know About the FDA’s Section 524B Guidelines

by

November 20, 2023 at 06:26PM The FDA has issued updated regulations regarding the cybersecurity requirements for medical devices. The regulations, found in Section 524B of the FD&C Act, went into effect on October 1, 2023. They apply to anyone submitting a premarket application for a “cyber device.” The purpose of the regulations is to ensure … Read more

5 Steps to Assessing Risk Profiles of Third-Party SSE Platforms

by

November 20, 2023 at 07:45AM Shifting to a converged Secure Services Edge (SSE) model with a clear path to SASE improves cybersecurity, but it’s important to assess risk profiles before adopting SSE platforms. Factors to consider include certifications and compliance, reputation and history, data security measures, service-level agreements, and commitment to continuous improvement. By evaluating … Read more

EU Tightens Cybersecurity Requirements for Critical Infrastructure and Services

by

November 15, 2023 at 04:05PM The European Union’s NIS2 Directive aims to enhance the security and resilience of network and information systems in the EU. Organizations operating within the EU must comply with the directive, which includes training and awareness, cybersecurity risk management measures, reporting obligations, and the use of EU certification schemes. Noncompliance can … Read more

DirectDefense Launches ThreatAdvisor 3.0 to Streamline Security Operations With SOAR Technology

by

November 14, 2023 at 10:14PM DirectDefense has announced the release of ThreatAdvisor 3.0, a security orchestration, automation, and response (SOAR) platform. The platform improves the speed, efficiency, and accuracy of the company’s Security Operations Center (SOC) by offering continuous security monitoring and management, automating manual processes, and providing an extensive knowledge base for compliance and … Read more

Crafting an AI Policy That Safeguards Data Without Stifling Productivity

by

November 7, 2023 at 01:08PM Chief information security officers (CISOs) are facing challenges in the evolving threat landscape with the rise of AI. While some companies are tempted to ban AI due to concerns about bias, lack of transparency, security, and data privacy, AI brings undeniable benefits. CISOs should establish a corporate AI policy that … Read more

Steps to Follow to Comply With the SEC Cybersecurity Disclosure Rule

by

November 7, 2023 at 01:52AM The Securities and Exchange Commission (SEC) has implemented a new rule requiring companies to disclose cybersecurity incidents and provide annual information on their cybersecurity risk management, strategy, and governance. The rule mandates the filing of Form 8-K within four business days of determining an incident as material, with enforcement starting … Read more

Considerations for Managing Digital Sovereignty: The Executive Perspective

by

November 3, 2023 at 09:10AM Businesses value the availability, scalability, and reliability of cloud computing, which enables data to be accessed and processed globally. However, the rise of cloud computing has led to increased scrutiny of data governance and ensuring compliance with digital sovereignty requirements. Cloud providers can help navigate these challenges by offering products … Read more