The National Institute of Standards and Technology (NIST) recently released version 2.0 of its Risk Management Framework (RMF). The RMF addresses security, privacy, and supply chain risk in an integrated manner. One of the significant additions to the RMF is a step called Prepare. Prepare is intended to help organizations
Gift cards, bonuses and incentives are very popular throughout the end of the calendar year and in the opening months of the new year. Unfortunately, scammers are well aware of this, and they’re looking to cash in. As a result, companies are more vulnerable to Business Email Compromise (BEC) scams.
As of December 15, 2018, the 2017 Trust Services Criteria are officially in effect. Organizations that are issuing System and Organization Controls (SOC 2) Reports will need to ensure that their reports reflect the changes from the previous Trust Services Criteria and Principles. How these changes impact your SOC 2
In June 2018, the Ohio legislature passed Senate Bill 220, known as the Ohio Data Protection Act (the “Act”). The Act takes a new approach to cybersecurity in that it creates an affirmative defense for companies that suffer a data breach if they have a written cybersecurity program in place.
Participation for the 2018 Wholesale / Distribution Compensation, Benefits and Benchmarking Study is now open for all companies in the wholesale and/ or distribution industries. This comprehensive study is conducted every other year and provides invaluable benchmarking metrics to regional companies that operate in the industry, including: How your company’s
Cyber attacks on universities and colleges have been on the rise over the past few years. As a result, the Department of Education (DoE) has released guidance that will regulate data security practices in the education industry under the Gramm-Leach-Billey Act (GLBA). The DoE will require universities and colleges to