featureWhy governance, risk, and compliance must be integrated with cybersecurityWith pressure from regulators, evolving threats and the need for stronger oversight, integrating cybersecurity risks into GRC programs requires alignment between both areas.By Rosalyn Page29 Feb 202410 minsComplianceRisk Management news BigID adds access governance targeted at sensitive data and privilegesBy Shweta Sharma15 Feb 20244 minsComplianceIT Governancefeature Cyber Trust Mark concept gains momentum with smart device and IoT manufacturersBy Chris Hughes06 Feb 20249 minsSecurity HardwareComplianceSecurity Practices news analysisUS DOD's CMMC 2.0 rules lift burdens on MSPs, manufacturersBy John Mello Jr. 05 Jan 20245 minsRegulationSupply ChainCompliance featureNew risk management framework helps with SEC mandate complianceBy Brian Allen and Brandon Bapst 04 Jan 202410 minsRegulationComplianceRisk Management featureHow the EU AI Act regulates artificial intelligence: What it means for cybersecurityBy Andrada Fiscutean 13 Dec 202312 minsRegulationGenerative AICompliance featureThe SEC action against SolarWinds highlights how tough it can get for CISOsBy Susan Bradley 12 Dec 20236 minsCSO and CISORegulationCyberattacks featureAccenture takes an industrialized approach to safeguarding its cloud controlsBy Aimee Chanthadavong 11 Dec 20238 minsApplication SecurityCloud SecurityCompliance featureHow a digital design firm navigated its SOC 2 auditBy Alex Levin 28 Nov 202311 minsCertificationsCompliance ArticlesfeatureRise of the cyber CPA: What it means for CISOsNew accountant certification rules starting January 2024 could deliver many new cybersecurity-trained accountants. Is this good or bad news for CISOs?By Evan Schuman 27 Nov 2023 7 minsCSO and CISOCompliancenews analysisRansomware gang files SEC complaint against company that refused to negotiateNew US Securities and Exchange Commission rules require reporting of breaches that are material, giving cyber extortionists a new tactic to coerce payments.By Lucian Constantin 17 Nov 2023 4 minsRansomwareComplianceCybercrimefeatureHow US SEC legal actions put CISOs at risk and what to do about itCISOs could find themselves in a painful Catch-22 situation when the US Securities and Exchange Commission’s new cybersecurity rules are enacted in December. By Evan Schuman 16 Nov 2023 8 minsCSO and CISOComplianceRisk ManagementnewsGenerative AI could erode customer trust, half of business leaders sayBusinesses leaders admit their company needs to improve security and compliance measures as demands of customers, investors, and suppliers increase.By Michael Hill 08 Nov 2023 4 minsCSO and CISOGenerative AICompliancenewsUS launches “Shields Ready” campaign to secure critical infrastructureShields Ready initiative outlines strategies for preparing critical infrastructure organizations for potential disruption and building more resilience into systems, facilities, and processes.By Michael Hill 08 Nov 2023 3 minsGovernmentComplianceCritical InfrastructurenewsAuditBoard adds new AI and analytics capabilities for compliance and risk maWith the new AI algorithms, organizations will be able to streamline audit workflows and automate various risk management and compliance programs.By Shweta Sharma 18 Oct 2023 3 minsGenerative AIComplianceRisk ManagementnewsVanta bakes generative AI into core security and compliance productNew generative AI capabilities are coming to security and compliance vendor Vanta’s main platform, adding a layer of automation to compliance tasks.By Jon Gold 10 Oct 2023 3 minsGenerative AIComplianceRisk ManagementnewsCybersecurity experts raise concerns over EU Cyber Resilience Act’s vulnerability disclosure requirementsOpen letter claims current provisions will create new threats that undermine the security of digital products and individuals.By Michael Hill 03 Oct 2023 4 minsRegulationComplianceVulnerabilitiesnewsOnline Safety Bill passes final parliament debate, set to become UK lawDespite widespread criticism and scrutiny, the UK government is within touching distance of delivering its controversial new internet safety rules.By Michael Hill 20 Sep 2023 3 minsEncryptionCompliancePrivacynews analysisCyber-related False Claims actions are on the uptickVerizon's $4 million settlement with the US DOJ signals stepped-up action by the Justice Department's Civil Cyber-Fraud initiative.By Cynthia Brumfield 18 Sep 2023 7 minsRegulationComplianceSecurity PracticesfeatureSecurity and privacy laws, regulations, and compliance: The complete guideThis handy directory provides summaries and links to the full text of each security or privacy law and regulation.By CSO Staff 12 Sep 2023 49 minsRegulationComplianceSecuritynews analysisNIST releases Cybersecurity Framework 2.0 draftNIST seeks comments ahead of the 2024 release of CSF 2.0, which aims to appeal to a broader range of organizations while elevating the importance of corporate governance and more fully addressing supply chain security.By Cynthia Brumfield 12 Sep 2023 7 minsComplianceCritical InfrastructureRisk Management Show more Show less View all Resources whitepaper Data Protection in a Multicloud World Data protection challenges resulting in disruption are on the rise with public clouds and cyberattacks the leading areas of concern. Organizations that continue to modernize data protection can minimize risk and raise confidence levels The post Data Protection in a Multicloud World appeared first on Whitepaper Repository –. By Dell Technologies 18 May 2023Cloud SecurityData and Information SecurityMulti Cloud whitepaper Top reasons why customers choose Dell VxRail By Dell Technologies 18 May 2023Infrastructure ManagementIT ManagementSystem Management whitepaper The Long Road Ahead to Ransomware Preparedness By Dell Technologies 17 May 2023Cloud SecurityRansomwareSecurity View all Video on demand videoAligning security, compliance and privacy across inventory trackingBrad Wells, Executive Director, Information Security, and Kandice Samuelson, Senior Director, IT Governance at PPD lead a team enhancing PPD’s inventory tracking system that identifies PPD’s most valuable assets. Join us to learn how they distribute security resources for appropriate levels of protection, maintain compliance with government regulations and industry standards, and leverage information security controls aligned with client requirements, industry frameworks and privacy regulations. 28 May 2021 20 minsComplianceData and Information SecurityPrivacy See all videos Explore a topic Application Security Business Continuity Business Operations Careers Cloud Security Critical Infrastructure Cybercrime Identity and Access Management Industry IT Leadership Network Security Physical Security Privacy Risk Management View all topics All topics Close Application Security Business Continuity Business Operations Careers Cloud Security Critical Infrastructure Cybercrime Identity and Access Management Industry IT Leadership Network Security Physical Security Privacy Risk Management Security Security Infrastructure Software Development Vulnerabilities Generative AI Show me morePopularArticlesPodcastsVideos news AT&T suffers critical breach impacting 73 million customers By Shweta Sharma 01 Apr 20244 mins Data Breach feature Recruit for diversity: Practical ways to remove bias from the hiring process By Aimee Chanthadavong 01 Apr 20248 mins Careers feature The CSO guide to top security conferences By CSO Staff 01 Apr 202417 mins Technology IndustryIT SkillsEvents podcast CSO Executive Sessions: 2024 International Women's Day special 13 Mar 202410 mins CSO and CISO podcast CSO Executive Sessions: Former convicted hacker Hieu Minh Ngo on blindspots in data protection 20 Feb 202421 mins CSO and CISO podcast CSO Executive Sessions Australia with Sunil Sale, CISO at MinterEllison 20 Nov 202315 mins CSO and CISO video CSO Executive Sessions: Geopolitical tensions in the South China Sea – why the private sector should care 01 Apr 202416 mins CSO and CISO video CSO Executive Sessions: 2024 International Women's Day special 13 Mar 202410 mins CSO and CISO video LockBit feud with law enforcement feels like a TV drama 05 Mar 202456 mins RansomwareArtificial Intelligence