Analytics Insight, Monday, March 31st, 2025
Importance Of Compliance Training In Various Industries
Compliance training significantly impacts a business's operation and protects its employees against challenges and risks at work.
more →
Back Issues This Week → Popular →
All issues › Archive
Compliance — Archive
129 articles · page 2 of 3
Security Boulevard, Thursday, March 27th, 2025
How Do I Manage Access Controls For NHIs To Meet Compliance Requirements?
How Can Non-Human Identities Improve Access Control Compliance?
more →
Security Boulevard, Thursday, March 27th, 2025
How Can I Align Our NHI Management With GDPR And Other Standards?
Is Your NHI Management GDPR Compliant?
more → Security Boulevard, Tuesday, March 25th, 2025
Two-Factor Authentication (2FA) Vs. Multi-Factor Authentication (MFA)
Two-factor authentication (2FA) and multi-factor authentication (MFA) both add at least one additional step to the authentication flow by requiring more than one way to prove a user's identity.
more → Sustainability and ESG, Monday, March 24th, 2025
How To Build A Sustainability Performance Management Stack
Sustainability pressure will continue to grow -- despite headlines that suggest otherwise -- and smart business and IT leaders understand how to use new tech to help meet demands.
more →
TechStrong ITSM, Monday, March 24th, 2025
Best Practices For IT Due Diligence In Corporate Transactions
In corporate transactions, IT due diligence is critical yet often underestimated. A company's IT infrastructure, security framework and data management practices can greatly impact the success or failure of a deal.
more →
CIO, Tuesday, March 18th, 2025
DORA, PCI DSS 4.0 And The Future Of Compliance
With an ever-changing regulatory landscape, organizations may need a trusted partner to help them implement the security measures required to stay in compliance.
more →
Architecture and Governance, Monday, March 10th, 2025
GRC Framework and Strategy for AI Initiatives
Organisations are deploying multiple AI initiatives that have the potential to transform operations, drive innovation, and enhance competitiveness.
more →
Security Boulevard, Wednesday, March 5th, 2025
Security Compliance Management Tips For 2025
Security compliance management involves an organization's proactive measures to protect its assets while adhering to internal security standards and regulatory requirements.
more → HelpNet Security, Wednesday, February 26th, 2025
The Compliance Illusion: Why Your Company Might Be At Risk Despite Passing Audits
For many CISOs, compliance can feel like a necessary evil and a false sense of security. While frameworks like ISO 27001, SOC 2, and PCI DSS offer structured guidelines, they don't automatically equate to strong cybersecurity.
more →
RTInsights, Monday, February 24th, 2025
A Practical Guide To Optimizing Grc Processes
Automation, AI, and more can help organizations make improvements that translate to faster, more accurate, and more scalable GRC processes.
more →
Security Boulevard, Tuesday, February 18th, 2025
Cyber Security Governance, Risk, and Complianc (GRC) and Quantifying ROI
Measuring the Effectiveness of Cyber Security GRC
more → Security Boulevard, Tuesday, February 4th, 2025
Top 15 Cloud Compliance Tools In 2025
Keeping your head in the clouds might sound dreamy, but managing compliance up there doesn't quite hit the same.
more → Security Boulevard, Thursday, January 30th, 2025
Ensuring Compliance With Secure Secrets Vaulting
Why is Secure Secrets Vaulting a Critical Factor?
more → Security Boulevard, Thursday, January 30th, 2025
Cybersecurity GRC (Governance, Risk, Compliance)
Cybersecurity GRC: Harnessing a Holistic Approach
more → Security Boulevard, Thursday, January 30th, 2025
Advancing Cloud Compliance With Proactive Measures
Advancements in digital security manifest as a double-edged sword. While they provide efficient tools to safeguard sensitive data, they concurrently create complex cybersecurity challenges. This conundrum brings us to an important question: How can proactive measures enhance cloud compliance?Advancements in digital security manifest as a double-edged sword. While they provide efficient tools to safeguard sensitive data, they concurrently create complex cybersecurity challenges. This conundrum brings us to an important question: How can proactive measures enhance cloud compliance?
more → Security Boulevard, Tuesday, January 28th, 2025
How Compliance Automation Enhances Data Security
Protecting sensitive data is critical for businesses of all sizes. Organizations face increasing pressure to comply with stringent regulations while safeguarding against cyber threats.
more → SC Media, Tuesday, January 28th, 2025
Compliance: No Longer Just Policy Guidelines For Organizations
Compliance is no longer a theoretical or strategic area of coverage, but rather a clear-and-present threat for businesses.
more →
Security Boulevard, Friday, January 24th, 2025
Cyber Lingo: What Is GRC In Cybersecurity?
What is GRC in cybersecurity, and why does it matter? GRC stands for Governance, Risk, and Compliance, a helpful framework that integrates policies, risk management strategies, and compliance standards to help security managers maintain an organized and successful security program.
more → Search Security, Friday, January 24th, 2025
Data Sovereignty Compliance Challenges And Best Practices
Organizations that use the cloud face stiff challenges in complying with data sovereignty laws and regulations. The first step: Understand which laws apply.
more → Tripwire, Monday, January 20th, 2025
Managing Security And Compliance In A Remote Work Environment
Remote work isn't just a temporary trend anymore; it has become a permanent fixture. What began as a quick response during the pandemic has evolved into the new normal for businesses worldwide. In America, 20% of people now work from home.
more →
ComputerWeekly, Friday, January 17th, 2025
A Guide To DORA Compliance
We look at the new EU regulation for cyber resiliency, the role of IT asset management in auditing and third-party risks
more →
Security Boulevard, Monday, January 13th, 2025
Top 6 Compliance Management Tools For Financial Services
The financial services industry is arguably one of the most highly regulated sectors worldwide.
more → Technative, Thursday, January 9th, 2025
The Key Steps To Ensuring Dora Compliance
As we approach 2025, financial institutions across the EU face the challenge of complying with the Digital Operational Resilience Act (DORA), which is set to take effect on the 17th of January.
more →
Security Boulevard, Tuesday, January 7th, 2025
Compliance As Cybersecurity: A Reality Check On Checkbox Risk Management
In the world of cybersecurity, compliance is a no-brainer.
more → Security Boulevard, Saturday, December 21st, 2024
Empower Your Team With Robust Cloud Compliance Tactics
Why Do Robust Cloud Compliance Tactics Matter?
more → Security Boulevard, Tuesday, December 17th, 2024
Achieving Stability In Cloud Compliance And Security
The increasing adoption of cloud technologies in various industries, from healthcare to financial services, makes the question of stability in cloud compliance and security a top priority.
more → Security Boulevard, Monday, December 9th, 2024
Automated Compliance Evidence: Types And How To Choose The Right One
You're in the middle of an audit, and it's the usual drill: toggling between spreadsheets, email chains, and access logs, while your fingers automatically find Ctrl+PrtSc to grab evidence for auditors. The back-and-forth is relentless-'Can we get timestamps on this?' or, 'Where's the proof this control was implemented before the deadline?'
more → Security Boulevard, Monday, December 9th, 2024
Why Compliance In Cloud Security Can't Be Ignored
Are we fully conscious of the significant correlation between compliance and cloud security? With the increasing reliance on cloud-based solutions, the challenge of maintaining security compliance in the cloud environment has become a pivotal concern for organizations across multiple sectors.
more → HelpNet Security, Friday, November 29th, 2024
The Effect Of Compliance Requirements On Vulnerability Management Strategies
In this Help Net Security interview, Steve Carter, CEO of Nucleus Security, discusses the ongoing challenges in vulnerability management, including prioritizing vulnerabilities and addressing patching delays.
more → Search CIO, Wednesday, November 27th, 2024
What Is Compliance Risk?
Compliance risk is an organization's potential exposure to legal penalties, financial forfeiture and material loss, resulting from its failure to act in accordance with industry laws and regulations, internal policies or prescribed best practices. Compliance risk is also known as integrity risk.
more → Security Boulevard, Monday, November 25th, 2024
CMMC Compliance Requirements: A Complete Guide
Department of Defense (DoD) data is some of the most sensitive out there. That's why the DoD designed the Cybersecurity Maturity Model Certification (CMMC) framework. It helps software providers implement cybersecurity measures to protect controlled information.
more → Security Boulevard, Monday, November 25th, 2024
Top 7 Vanta Alternatives To Consider In 2025
Vanta was developed to help organizations achieve SOC 2 compliance quickly. Compliance management platforms have gained significant traction in the market. For startups and smaller businesses, these certifications are often crucial for breaking into markets where enterprise clients expect certain compliance standards as baseline requirements.
more → Security Boulevard, Monday, November 11th, 2024
Best 7 Compliance Risk Assessment Tools For 2024
Organizations devote significant resources to their compliance risk assessments each year. Yet many compliance leads and senior executives feel stuck in a cycle of repetition and question whether these efforts yield meaningful benefits.
more → Security Boulevard, Monday, November 4th, 2024
What Is Enterprise Compliance And Why Is It Important?
In today's fast-paced business world, companies juggle numerous responsibilities-from meeting customer demands to navigating complex regulations. One crucial area that's often misunderstood but incredibly important is enterprise compliance.
more → Analytics Insight, Wednesday, October 30th, 2024
How GDPR Impacts Global Tech Companies
For large tech companies, implementing GDPR compliance means substantial investments in infrastructure, data security, and personnel
more → Security Boulevard, Tuesday, October 29th, 2024
PCI DSS Self-Assessment Questionnaires: Choosing the Right Type
If you process credit card payments, you need to prioritize security. One way to guarantee this safety is by complying with Payment Card Industry (PCI) Data Security Standards (DSS).
more → Security Boulevard, Tuesday, October 29th, 2024
PCI DSS Compliance Levels and Requirements: A Complete Guide
If your business processes credit card transactions, it needs to meet the Payment Card Industry (PCI) Data Security Standards (DSS).
more → Gartner, Wednesday, October 16th, 2024
Gartner Says Enterprise Risk Management Leaders Are Challenged With A Lack Of Pricing Transparency In Grc Tools
Due to widely varying government, risk, and compliance (GRC) tool pricing, enterprise risk management (ERM) leaders must understand four different pricing-tier categories of GRC solutions and apply a scoping framework to further estimate likely costs ahead of vendor selection, according to Gartner Inc.
more →
Security Boulevard, Wednesday, October 16th, 2024
7 Top Compliance Audit Software For 2024
We get it - keeping up with new, ever-changing compliance requirements can be a nightmare, often resulting in a mild headache at best.
more → ReadMonk, Monday, September 16th, 2024
A Redmonk Conversation: Luis Villa On The AI Compliance Dumpster Fire And Doing The Right Thing
In this RedMonk Conversation, Kate Holterhoff, senior analyst at RedMonk, speaks with Luis Villa, co-founder and general counsel at Tidelift, about new challenges in security and privacy in the AI era.
more →
CIMCOR, Thursday, July 25th, 2024
5 Things To Know About GDPR Compliance
Navigating the data protection landscape is more critical than ever, and the General Data Protection Regulation (GDPR) stands at the forefront of this endeavor. From hefty fines to mandatory breach notifications, understanding GDPR compliance is crucial for businesses operating in or interacting with the EU. In this article, we'll explore five key aspects of GDPR compliance that every organization should know.
more →
ITProToday, Friday, July 19th, 2024
Master IT Compliance: Key Standards And Risks Explained
The job of an IT professional extends beyond technology to include navigating complex and evolving regulatory requirements.
more →
centraleyes, Tuesday, June 25th, 2024
Top 6 Compliance Reporting Tools In 2024
A compliance report describes how successfully or poorly a company complies with security and business-related regulations. It is distributed to various audiences, including the board, senior executives, regulators, business partners, third-party vendors, etc.
more →
IT Security Guru, Tuesday, May 28th, 2024
GDPR Turns Six: Reflecting On A Global Privacy Benchmark
The EU's flagship data protection law, the General Data Protection Regulation (GDPR), celebrated its sixth anniversary on 25th May '24. Since coming into effect in 2018, its stringent requirements for enhanced security controls and data privacy have consistently raised awareness about the issues surrounding the storage and processing of personal data. This regulation has set a global benchmark, becoming a model for regulators worldwide.
more →
Search Data Backup, Monday, April 1st, 2024
6 Business Benefits of Data Protection and GDPR compliance
Complying with GDPR and avoiding severe fines is a primary goal of businesses, but the data governing principles and security tools to achieve compliance yield systemic benefits.
more → WhatIs, Wednesday, March 27th, 2024
General Data Protection Regulation (GDPR)
The General Data Protection Regulation (GDPR) is legislation that updated and unified data privacy laws across the European Union (EU).
more → enterprise times, Wednesday, February 28th, 2024
Leveraging Threat Intelligence For Regulatory Compliance
The US Government recently announced that the state-sponsored Chinese cyber group Volt Typhoon has compromised multiple critical infrastructure organisations' IT networks in the US.
more →
Sectrio, Wednesday, February 28th, 2024
The Difference Between OT Security And Compliance
Cybersecurity luminary Bruce Schneier aptly captures this sentiment, asserting, 'The more we connect, the more we must protect.' This rings particularly true for the domain of OT, where the convergence with IT introduces a myriad of security challenges. The need for a comprehensive guide to OT security compliance has never been more pressing.
more →
Comforte, Friday, February 16th, 2024
Preparing for PCI DSS 4.0: Five Steps to Get Financial Institutions Ready
For two decades, payments security industry body the PCI Security Standards Council (PCI SSC) has demanded compliance with an ever-growing set of rigorous technical and operational requirements in order to protect cardholder data. PCI DSS 4.0 is the biggest update to its payment card industry data security standard since its inception in 2004.
more →