Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Risk Management

upguard

What is the Montana Consumer Data Privacy Act (MTCDPA)?

Apr 19, 2024 By Nicholas Sollitto In UpGuard
Montana Governor Greg Gianforte signed Senate Bill 384, the Montana Consumer Data Privacy Act (MTCDPA), on May 19, 2023. The consumer privacy law will become effective on October 1, 2024, and requires covered entities that process personal data to comply with several transparency and disclosure obligations. The MTCDPA follows the structure and scope of other US state data privacy laws, including the California Consumer Privacy Act, Tennessee Information Protection Act, and Colorado Privacy Act.
Read Post
upguard

What is the Tennessee Information Protection Act (TIPA)?

Apr 19, 2024 By Nicholas Sollitto In UpGuard
Tennessee Governor Bill Lee passed the Tennessee Information Protection Act (TIPA) on May 11, 2023. TIPA becomes effective on July 1, 2025, and groups Tennessee with California, Colorado, Virginia, and other states that have published their own data privacy law while waiting for a comprehensive federal law from the U.S. Government.
Read Post

Cyber Risk Solutions from Kroll

Apr 19, 2024 By Kroll In Kroll
We are the world’s leader in incident response. Merging complete response capabilities with frontline threat intelligence from over 3000 incidents handled per year and end-to-end expertise we protect, detect and respond against cyberattacks. For immediate assistance, contact us via our 24x7 cyber incident hotlines. Tackle every facet of today and tomorrow’s threat landscape with guidance from Kroll’s Cyber Risk experts. Enriched by frontline threat intel from 3000+ incident response cases every year, Kroll’s protection, detection, and response solutions immediately mature your cyber posture.
View Video
upguard

Introducing UpGuard Trust Exchange

Apr 19, 2024 By UpGuard Team In UpGuard
Security questionnaires represent the cornerstone of most third-party risk management (TPRM) programs. They allow organizations to responsibly appraise a vendor's security posture before they move forward with onboarding and grant the vendor access to internal systems and data. Nevertheless, most security teams feel burdened by time-consuming and lengthy security questionnaires, especially when faced with additional resource and staffing limitations.
Read Post
bitsight

Championing Supply Chain Cybersecurity Amid Evolving Regulations-A New CISO Imperative

Apr 18, 2024 By Sabrina Pagnotta In BitSight
Supply chain cybersecurity and resilience have become pivotal across various cyber regulations, most notably NIS2 and DORA. In this blog, stemming from our latest ebook '5 Proven Strategies to Maximize Supply Chain Cyber Risk Management’, we will explore the reasons why resilience is a new mandate for CISOs today and, most importantly, how to secure the supply chain at scale—in line with evolving regulatory requirements.
Read Post
upguard

Implementing A Vendor Risk Assessment Process in 2024

Apr 18, 2024 By Edward Kost In UpGuard
A Vendor Risk Assessment (also referred to as a third-party risk assessment) is a critical component of a Vendor Risk Management program. As such, the overall impact of your VRM efforts hangs on the efficiency of your vendor risk assessment workflow. This post outlines a framework for implementing a streamlined vendor risk assessment process to prevent potential data breach-causing third-party security risks from falling through the cracks.
Read Post
upguard

Advanced GDPR Compliance Strategies for Cybersecurity

Apr 18, 2024 By Edward Kost In UpGuard
As digital transformation continues to multiply pathways to personal data, complete GDPR compliance is getting harder to attain. Whether you’re a data protection officer or a cybersecurity professional helping your organization remain compliant, this blog suggests advanced GDPR compliance strategies you may not have yet considered - beyond that delightful cookie consent notice we all love.
Read Post
upguard

4-Stage Vendor Risk Management Framework (2024 Edition)

Apr 18, 2024 By Edward Kost In UpGuard
A Vendor Risk Management framework is the skeleton of your VRM program. Without it, your Vendor Risk Management program will collapse under a heavy burden of inefficient processes. This post outlines the anatomy of an effective VRM framework to help you seamlessly manage security risks in your third-party network.
Read Post
bitsight

Behind the Screen: The Peril of Neglecting Mobile Apps

Apr 17, 2024 By Pedro Umbelino In BitSight
Everyone knows that running outdated computer applications comes with annoyances and risks. An outdated application might face performance issues or just become slower than modern versions. It might face compatibility issues and have limited functionalities. It might lose technical support and even fail to meet current industry standards and regulations, which could put your organization at risk for non-compliance penalties and legal action.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.