Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

October 2024

kroll

DORA vs. NIS2 vs. PSD2: Navigating the Evolving Regulatory Landscape

Oct 30, 2024 By Kroll In Kroll
The legal and regulatory landscape is constantly evolving, continually intensifying the demands placed on organizations. As well as meeting the requirements of existing regulations such as the Payment Services Directive 2 (PSD2), companies must contend with the upcoming introduction of the Network and Information Security Directive or NIS2 (Directive (EU) 2022/2555) and the Digital Operational Resilience Act (DORA).
Read Post
tripwire

Understanding SOX Requirements for IT and Cybersecurity Auditors

Oct 30, 2024 By John Salmi In Tripwire
The Sarbanes-Oxley Act (SOX) is a United States federal law that aims to enhance corporate transparency and accountability. Signed into law on July 30th, 2002, the Act came in response to a slew of major corporate accounting scandals, including those involving Enron and WorldCom, that came to light in the early 2000s. Its primary aim is to enhance corporate transparency and accountability, ensuring companies adhere to strict financial reporting standards and maintain effective internal controls.
Read Post
persona

Global age verification laws: how to maintain compliance and keep friction low

Oct 29, 2024 By Kerwell Liao In Persona
New age verification laws are popping up around the world. Learn what these laws are and how to stay compliant. Kerwell is a product marketing manager focused on Persona’s identity verification solutions. He enjoys watching basketball and exploring the world with his German Shepherd. Kerwell is a product marketing manager focused on Persona’s identity verification solutions. He enjoys watching basketball and exploring the world with his German Shepherd.
Read Post

Navigating DORA Compliance: Preparing for the EU's New Digital Operational Resilience Regulation

Oct 25, 2024 By Kroll In Kroll
The European Union’s (EU) new Digital Operational Resilience Act (DORA) is set to reshape how financial institutions handle their cybersecurity and operational risks. With enforcement from January 2025, DORA will impose a range of new standards and requirements. While there is an awareness of DORA in the marketplace, some firms do not fully understand its risks and consequences due to its broad scope. Similar to the introduction of the EU GDPR, many businesses might underestimate the effort needed to achieve compliance.
View Video
vanta

Vanta Introduces EU AI Act Support for the Ethical Development and Use of AI in Europe

Oct 24, 2024 By Vanta In Vanta
Providing European companies with support for local regulations and security best practices including the Digital Operational Resilience Act (DORA) and NIS 2. Accelerating European momentum with product enhancements and London office.
Read Post
Featured Post
cycognito

What Security Teams Need to Know About the EU's NIS 2 Directive

Oct 24, 2024 By Graham Rance, VP Global Pre-Sales In CyCognito
The deadline to get compliant with the EU's NIS 2 Directive is here. And this isn't just a minor update from its NIS 1 predecessor-it's a major expansion that carries with it new challenges and obligations. The directive now covers a whopping 300,000 organizations, up from just 20,000 under NIS 1. Sectors like aerospace, public administration, digital services, postal and courier services, and food production are now included. Organizations are classified into "essential" or "important" entities based on size and criticality to the economy.
Read Post
protegrity

Compliance Cheat Sheet: GDPR vs. CPRA vs. HIPAA vs. SOC

Oct 23, 2024 By Protegrity In Protegrity
Those who work up close and personal with security compliance standards can always use another tool in their tool belt. So we won’t waste your time. Using this cheat sheet, you can quickly explore the ever-changing requirements and penalties for some of the most significant regulatory compliance standards across the globe. It’s difficult to keep up while meeting data compliance standards, which is why it’s crucial to have a resource for your efforts.
Read Post
teleport

The NIS2 Directive is Here. What Happens Next?

Oct 22, 2024 By Jack Pitts In Teleport
The Network and Information Security (NIS2) Directive’s deadline of October 17th has officially passed. Yet despite this deadline – and the strict penalties in place for non-compliance – nearly 66% of businesses operating in Europe have likely not implemented the necessary compliance controls (Veeam Software). Additionally, the majority of EU member states have yet to officially codify NIS2 standards into their national laws.
Read Post
protegrity

A Step-by-Step Guide to DORA Finance Compliance: Practical Advice for Financial Institutions

Oct 21, 2024 By Protegrity In Protegrity
In the previous post, we explained what the Digital Operational Resilience Act (DORA) is and why it’s crucial for financial institutions and meeting their financial compliance requirements. Now, let’s dive into the steps you need to take to ensure your organisation is fully prepared by the January 2025 deadline.
Read Post
protegrity

Cybersecurity Compliance for IT: Key Regulatory Frameworks and Standards

Oct 21, 2024 By Protegrity In Protegrity
Cybersecurity compliance is crucial for protecting sensitive data and ensuring adherence to global security compliance standards. Protegrity’s comprehensive data security solutions, such as tokenization and dynamic data masking, empower organizations to safeguard their sensitive PII while allowing specific data sets to be protected and maintain compliance with regulations like GDPR, HIPAA rules and regulations, and PCI-DSS.
Read Post
datadog

How Datadog can support your DORA compliance strategy and operational resilience

Oct 21, 2024 By Addie Beach In Datadog
Reliable access to financial data is critical for organizations and individual consumers alike, making resiliency key for financial institutions responsible for managing this information. While cloud computing can strengthen your app’s resiliency, it can also open up new security risks and require more complex continuity planning.
Read Post
tripwire

Cybersecurity at Ports Gets a Boost with New Bipartisan Bill

Oct 21, 2024 By Josh Breaker-Rolfe In Tripwire
Cybersecurity's role in geopolitics is growing more significant by the day. In a world of increasingly sophisticated cyber threats, governments worldwide are recognizing the impact digital attacks can have on national security, trade, and infrastructure. This has never been more evident than with the recent introduction of the Protecting Investments in Our Ports Act by U.S. Senators John Cornyn (R-TX) and Gary Peters (D-MI), along with U.S.
Read Post
keeper

What Is the Digital Operational Resilience Act (DORA)?

Oct 16, 2024 By Ashley D'Andrea In Keeper
The Digital Operational Resilience Act (DORA) is a regulation that strengthens digital security among financial institutions in the European Union (EU). Although DORA came into effect in 2023, it will be fully adopted by all EU financial entities and third-party service providers of Information Communication Technologies (ICT) beginning in January 2025 to improve their defenses against potential cyber threats.
Read Post
riscosity

SEBI's CSCRF Regulation

Oct 15, 2024 By Anirban Banerjee In Riscosity
India's Securities and Exchange Board (SEBI) has introduced a new regulatory framework called the Cyber Security and Cyber Resilience Framework (CSCRF). The regulation aims to tighten cybersecurity and data governance for capital market participants. As cyber threats increase globally, the CSCRF is poised to create a stronger defense line for organizations operating in India’s capital markets.
Read Post
protecto

What is India's Digital Personal Data Protection (DPDP) Act? Everything You Need to Know!

Oct 14, 2024 By Rahul Sharma In Protecto
Data protection has become a critical concern worldwide as digital transactions and data exchanges grow. Countries are establishing strict data protection laws to safeguard personal information, and India is no exception. The Digital Personal Data Protection (DPDP) Act is India’s response to growing privacy concerns and the need for robust regulations around personal data usage.
Read Post
vanta

Your essential 10-step GDPR compliance checklist

Oct 14, 2024 By Vanta In Vanta
If your business entails collecting and/or processing the personal data of European Union (EU) or United Kingdom (UK) citizens, complying with the General Data Protection Regulation (GDPR) is a priority. ‍ The regulation is quite comprehensive and includes numerous requirements your organization must implement.
Read Post
foresiet

Australia Enacts Landmark Cybersecurity Legislation: The Cyber Security Bill 2024

Oct 11, 2024 By Foresiet In Foresiet
On October 9, 2024, the Australian government took a significant step in fortifying its cyber defenses by introducing the Cyber Security Bill 2024 to Parliament. This pioneering legislation marks the country's first standalone cybersecurity law, designed to enhance protections for both citizens and organizations amid escalating geopolitical and cyber threats. By implementing comprehensive measures, Australia aims to safeguard critical infrastructure and ensure a more secure digital environment.
Read Post
manageengine

How the Digital Personal Data Protection Act transforms your business

Oct 9, 2024 By General In ManageEngine
India tops the world’s population with 1.4 billion people. Sixty percent of that population fall under the working age group, which is expected to increase over the next decade. The world’s eyes are on India, as the country sees a fair amount of digitization among all tiers of its cities.
Read Post
vista infosec

Understanding the Dora Compliance: A Comprehensive Guide

Oct 8, 2024 By Narendra Sahoo In VISTA InfoSec
Technology is always brimming with advancements, and it is more prominent in the financial sector. As financial institutions increasingly rely on digital infrastructure to enhance operations, customer experience, and security, they also face growing challenges in mitigating the risks that come with it, such as cyber threats, system failures, and other operational vulnerabilities.
Read Post
a10 networks

Meeting Growing Regulatory Requirements

Oct 8, 2024 By Gary Nudd In A10 Networks
The second Network and Information Systems Directive (NIS2) will come into effect on 17 October 2024. This is the date by which all EU member states must implement the directive into national law. Not far behind is the Digital Operational Resilience Act (DORA), an EU regulation which came into force on 16 January 2023 but is effective 17 January 2025.
Read Post
netskope

Asia's Evolving AI Regulatory Landscape: Lessons from Cybersecurity Regulation

Oct 3, 2024 By Josh Kennedy-White In Netskope
Artificial intelligence (AI) is transforming industries across Asia, driving innovation, economic growth, and societal advancements. However, AI’s profound impact also brings significant governance challenges. As with any transformative technology, robust regulatory frameworks are essential to mitigate risks, ensure ethical use, and protect public interests. Reflecting on the evolution of cybersecurity regulation may provide insight into how AI regulation might develop.
Read Post
gitguardian

GitGuardian Introduces European Data Hosting to Ensure Data Sovereignty and GDPR Compliance

Oct 3, 2024 By Ferdinand Boas In GitGuardian
GitGuardian introduces European data hosting for its Secrets Detection Platform SaaS, ensuring data sovereignty and GDPR compliance. Discover how our new EU hosting options help enterprises meet regulatory requirements and protect sensitive data with ease.
Read Post
riscosity

Saudi Arabia's PDPL

Oct 3, 2024 By Anirban Banerjee In Riscosity
Saudi Arabia's Personal Data Protection Law (PDPL), enacted in 2021, marks a significant step in regulating the processing of personal data in the Kingdom. The PDPL aims to protect individuals' privacy by setting out clear rules on how personal data can be collected, processed, stored, and shared. As more businesses undergo digital transformations, the PDPL holds companies accountable for safeguarding data and ensuring transparency in their handling of personal information.
Read Post
netskope

Complying with the EU's New AI Act: A Guide to Staying Ahead

Oct 2, 2024 By Rich Beckett In Netskope
Artificial intelligence (AI) is increasingly embedded in modern organisations—from standalone generative AI apps to AI copilots in popular SaaS platforms, and the integration of self-hosted or public large language models (LLMs) in private applications tailored to specific business needs. The recently introduced EU AI Act sets out to regulate AI development and usage, ensuring that AI systems are safe, ethical, and respect fundamental rights.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.