Compliance

Why Cybersecurity is Worth the Cost for Your Business

Apr 22, 2022 By Narendra Sahoo In VISTA InfoSec

You probably have some form of cybersecurity program already in place. Maybe a Norton app that scanned this page for you before you opened it. While that may be good but yet not be enough to tackle or address the evolving cyber threats in the industry. We live in an era of rampant cyber security threats. Mistakes are as easy to make as they are punishing. In this article today let us take a look at why developing a cybersecurity program is worth the cost for your business.

Read Post

VISTA InfoSec

Read more about Why Cybersecurity is Worth the Cost for Your Business

ISO27001 Checklist of the Main Security Control Domain

Apr 22, 2022 By Narendra Sahoo In VISTA InfoSec

Information Security Management System is an international standard designed to manage the security of sensitive information. At the core, ISMS is about managing the people, processes, and technology through a risk management program. While there are many standards under the ISO2000 family, the ISO27001 Standard is the most popular and widely accepted standard in the industry.

Read Post

VISTA InfoSec

Read more about ISO27001 Checklist of the Main Security Control Domain

Securing the Digital Supply Chain Ep. 10 - Peeyush Ranjan

Apr 22, 2022 By Riscosity In Riscosity

An amazing conversation with Peeyush Ranjan, Engineering VP at a Fortune 50 organization. Peeyush coined an amazing term - "Diffused Responsibility" - this is the reason why we all, in different silos, development, security, GRC, legal have to try harder and pull towards the same goal. In fact the example used - of a sports team, getting the pigskin over the line is a very apt one.

View Video

Riscosity

Read more about Securing the Digital Supply Chain Ep. 10 - Peeyush Ranjan

SLACIP: How to Comply with the SOCI ACT Reforms

Apr 21, 2022 By Edward Kost In UpGuard

On March 31, 2022, the Security Legislation Amendment Critical Infrastructure Protection Act 2022, also known as SLACIP, was passed by the Australian Parliament. The SLACIP Act aims to build upon the SOCI Act framework to improve the security of Australia’s critical infrastructures. To learn how the SOCI Act reforms will affect you and for guidance on how to comply with its new risk management requirements, read on.

Read Post

UpGuard

Read more about SLACIP: How to Comply with the SOCI ACT Reforms

SOC 2 Type 1 vs. Type 2

Apr 21, 2022 By TrustCloud In TrustCloud

Every company that decides to go through SOC 2 certification has to decide whether to pursue a Type 1 or Type 2 audit. This video will help you quickly understand which of the two types is best for your company. Would you like to become audit ready in 12 weeks, rather than 12 months? Check the box compliance is out. Revenue generating compliance is in. Learn more about Kintent.

View Video

TrustCloud

Read more about SOC 2 Type 1 vs. Type 2

Build your robust data strategy the right way

Apr 20, 2022 By Calligo In Calligo

To uncover how to build the best data strategy for your business, we chat with Adam Ryan, Calligo’s Chief Data Officer for Data Strategy on what to do, what to avoid – and everything else in between…

Read Post

Calligo

Read more about Build your robust data strategy the right way

Streamline KYC Onboarding Workflow with Kroll's Business Connect Platform

Apr 20, 2022 By Kroll In Kroll

Introducing Kroll Business Connect for compliance professionals, a centralized, cloud-based platform designed to streamline know your customer (KYC) onboarding workflow – including file sharing, communications and tasks – in real-time with all stakeholders using one single platform. Compliance teams in any industry can tailor our proprietary platform to their specific needs. Business Connect easily integrates with any compliance software or CRM system.

View Video

Kroll

Read more about Streamline KYC Onboarding Workflow with Kroll's Business Connect Platform

Don't Just Ensure Cybersecurity Asset Compliance - Prove It

Apr 20, 2022 By A.J. Dunham In Forescout

With cybersecurity asset compliance, it’s not enough to ensure your systems and processes are operating in accordance with security frameworks and regulations. Unless you can prove compliance, you’re still subject to failed audits and penalties. When you automate cybersecurity device assessment and policy enforcement with Forescout, passing compliance audits becomes a byproduct of security operations.

Read Post

Forescout

Read more about Don't Just Ensure Cybersecurity Asset Compliance - Prove It

PCI DSS 4.0 - The Update

Apr 19, 2022 By Razorthorn In Razorthorn

Razorthorn MD, James Rees, has been a PCI DSS QSA for much of his career - hear his initial thoughts on the latest update. Get in touch if you have any questions for him.

View Video

Razorthorn

Read more about PCI DSS 4.0 - The Update

Top Tips for Moving from Compliance to Cybersecurity Excellence

Apr 19, 2022 By Anastasios Arampatzis In Tripwire

Compliance should be an essential part of business operations, regardless of industry. Taking preventative measures to manage compliance and mitigate risk can feel like a hassle upfront, but it can save your organisation huge costs in the long run. Compliance violations can result in fines, penalties, lawsuits, loss of reputation, and more. However, your efforts should not stop at obtaining a compliance certificate, rather they should expand to accelerate your cybersecurity posture.

Read Post