Compliance

EU's DORA regulation explained: New risk management requirements for financial firms

The proposed Digital Operational Resilience Act includes new incident response and third-party risk requirements for financial firms operating within the EU.

By Dan Swinhoe

08 Aug 20247 mins

ComplianceRisk ManagementSecurity

Articles

How the EU AI Act regulates artificial intelligence: What it means for cybersecurity

Critical infrastructure and other high-risk organizations will need to do AI risk assessments and adhere to cybersecurity standards.

By Andrada Fiscutean

13 Dec 2023 12 mins

RegulationGenerative AICompliance

The SEC action against SolarWinds highlights how tough it can get for CISOs

Examining what went wrong with SolarWinds’ handling of cyberattack reporting provides a cautionary tale for aspiring and incumbent security leaders alike.

By Susan Bradley

12 Dec 2023 6 mins

CSO and CISORegulationCyberattacks

Accenture takes an industrialized approach to safeguarding its cloud controls

Security was once a hindrance for Accenture developers. But since centralizing the company's compliance controls, the process has never been simpler.

By Aimee Chanthadavong

11 Dec 2023 8 mins

Application SecurityCloud SecurityCompliance

How a digital design firm navigated its SOC 2 audit

L+R's pursuit of SOC 2 certification was complicated by hardware inadequacies and its early adoption of AI, but a successful audit has provided security and business benefits.

By Alex Levin

28 Nov 2023 11 mins

CertificationsCompliance

Rise of the cyber CPA: What it means for CISOs

New accountant certification rules starting January 2024 could deliver many new cybersecurity-trained accountants. Is this good or bad news for CISOs?

By Evan Schuman

27 Nov 2023 7 mins

CSO and CISOCompliance

Ransomware gang files SEC complaint against company that refused to negotiate

New US Securities and Exchange Commission rules require reporting of breaches that are material, giving cyber extortionists a new tactic to coerce payments.

By Lucian Constantin

17 Nov 2023 4 mins

RansomwareComplianceCybercrime

How US SEC legal actions put CISOs at risk and what to do about it

CISOs could find themselves in a painful Catch-22 situation when the US Securities and Exchange Commission’s new cybersecurity rules are enacted in December.

By Evan Schuman

16 Nov 2023 8 mins

CSO and CISOComplianceRisk Management

Generative AI could erode customer trust, half of business leaders say

Businesses leaders admit their company needs to improve security and compliance measures as demands of customers, investors, and suppliers increase.

By Michael Hill

08 Nov 2023 4 mins

CSO and CISOGenerative AICompliance

US launches “Shields Ready” campaign to secure critical infrastructure

Shields Ready initiative outlines strategies for preparing critical infrastructure organizations for potential disruption and building more resilience into systems, facilities, and processes.

By Michael Hill

08 Nov 2023 3 mins

GovernmentComplianceCritical Infrastructure

AuditBoard adds new AI and analytics capabilities for compliance and risk ma

With the new AI algorithms, organizations will be able to streamline audit workflows and automate various risk management and compliance programs.

By Shweta Sharma

18 Oct 2023 3 mins

Generative AIComplianceRisk Management

Vanta bakes generative AI into core security and compliance product

New generative AI capabilities are coming to security and compliance vendor Vanta’s main platform, adding a layer of automation to compliance tasks.

By Jon Gold

10 Oct 2023 3 mins

Generative AIComplianceRisk Management

Cybersecurity experts raise concerns over EU Cyber Resilience Act’s vulnerability disclosure requirements

Open letter claims current provisions will create new threats that undermine the security of digital products and individuals.

By Michael Hill

03 Oct 2023 4 mins

RegulationComplianceVulnerabilities

View all

Explore a topic

Show me more

How to ensure cybersecurity strategies align with the company’s risk tolerance

By Rosalyn Page

03 Sep 202410 mins

CSO and CISORisk Management

North Korean hackers actively exploited a critical Chromium zero-day

By Shweta Sharma

02 Sep 20243 mins

Zero-day vulnerability

Ransomware recovery: 8 steps to successfully restore from backup

By Maria Korolov

02 Sep 202417 mins

RansomwareMalwareBackup and Recovery

CSO Executive Sessions: Guardians of the Games – How to keep the Olympics and other major events cyber safe

07 Aug 202417 mins

CSO and CISO

CSO Executive Session India with Dr Susil Kumar Meher, Head Health IT, AIIMS (New Delhi)

17 Jul 202417 mins

CSO and CISO

CSO Executive Session India with Charanjit Bhatia, Head of Cybersecurity, COE, Bata Brands

08 Jul 202418 mins

CSO and CISO

CSO Executive Sessions: Guardians of the Games – How to keep the Olympics and other major events cyber safe

07 Aug 202417 mins

RansomwareZero TrustCloud Security

CSO Executive Session India with Dr Susil Kumar Meher, Head Health IT, AIIMS (New Delhi)

17 Jul 202417 mins

CSO and CISO

Cybersecurity Insights for Tech Leaders: Addressing Dynamic Threats and AI Risks with Resilience

10 Jul 202424 mins

CSO and CISO

EU's DORA regulation explained: New risk management requirements for financial firms

China takes steps to implement digital ID initiative

Understanding CISA's proposed cyber incident reporting rules

General Data Protection Regulation (GDPR): What you need to know to stay compliant

Why governance, risk, and compliance must be integrated with cybersecurity

BigID adds access governance targeted at sensitive data and privileges

Cyber Trust Mark concept gains momentum with smart device and IoT manufacturers

US DOD's CMMC 2.0 rules lift burdens on MSPs, manufacturers

New risk management framework helps with SEC mandate compliance

Articles

How the EU AI Act regulates artificial intelligence: What it means for cybersecurity

The SEC action against SolarWinds highlights how tough it can get for CISOs

Accenture takes an industrialized approach to safeguarding its cloud controls

How a digital design firm navigated its SOC 2 audit

Rise of the cyber CPA: What it means for CISOs

Ransomware gang files SEC complaint against company that refused to negotiate

How US SEC legal actions put CISOs at risk and what to do about it

Generative AI could erode customer trust, half of business leaders say

US launches “Shields Ready” campaign to secure critical infrastructure

AuditBoard adds new AI and analytics capabilities for compliance and risk ma

Vanta bakes generative AI into core security and compliance product

Cybersecurity experts raise concerns over EU Cyber Resilience Act’s vulnerability disclosure requirements

Resources

Real-Time, All the Time: Fuelling AI success through a continuous data stream

2023 GigaOm Radar Report on Autonomous Security Operation Center (SOC) Solutions [XSIAM]

XSIAM E-Book: Machine-Led, Human-Empowered Platform

Video on demand

Aligning security, compliance and privacy across inventory tracking

Explore a topic

Show me more

How to ensure cybersecurity strategies align with the company’s risk tolerance

North Korean hackers actively exploited a critical Chromium zero-day

Ransomware recovery: 8 steps to successfully restore from backup

CSO Executive Sessions: Guardians of the Games – How to keep the Olympics and other major events cyber safe

CSO Executive Session India with Dr Susil Kumar Meher, Head Health IT, AIIMS (New Delhi)

CSO Executive Session India with Charanjit Bhatia, Head of Cybersecurity, COE, Bata Brands

CSO Executive Sessions: Guardians of the Games – How to keep the Olympics and other major events cyber safe

CSO Executive Session India with Dr Susil Kumar Meher, Head Health IT, AIIMS (New Delhi)

Cybersecurity Insights for Tech Leaders: Addressing Dynamic Threats and AI Risks with Resilience