Aug 3rd, 2020 - The Cybersecurity Maturity Model Certification (CMMC) was the Department of Defense’s response to the threat of cybersecurity compromises. The framework builds on existing requirements like NIST SP 800-171, NIST SP 800-53, and AIA NAS9933, and it will provide a unified standard for implementing cybersecurity standards across the defense supply chain. The network of companies in the DoD’s supply chain exceeds 300,000 and with the list of cyber threats growing, the DoD needed a stronger response. You may have already spotted CMMC level requirements in Request for Information (RFI)s this ... [Read More]

Aug 3rd, 2020 - Although it might sound straightforward, scoping a PCI assessment can be a challenge even for experienced organizations. Experts offer their best advice for avoiding PCI missteps. Any organization that accepts, processes, stores or transmits payment cards must show they’re compliant with the Payment Card Industry Data Security Standard ( PCI DSS ), and to do that, the organization must undergo an annual PCI assessment. This assessment, or audit, is meant to confirm that the organization meets the PCI DDS security and control requirements. Although the standards are prescriptive, how they ... [Read More]

Aug 1st, 2020 - In this episode of Trekking Through Compliance, we consider the episode Day of the Dove which aired on November 1, 1968, Star Date unknown. Compliance Takeaways: How to use disruption as an innovation. Integrating compliance into the business. Hitting the In this episode of Trekking Through Compliance, we consider the episode Day of the Dove which aired on November 1, 1968, Star Date unknown. Compliance Takeaways: How to use disruption as an innovation. Integrating compliance into the business. Hitting the ground running as a new CCO. [Read More]

Jul 31st, 2020 - Networking How Incident Analytics-Based ML and AI Makes Life Easier for Enterprise IT It may sound like a cliché, but it’s really more of a truism: enterprise networks are more complex than ever before. They need to support more users, devices, device types, applications, and data traffic than at any point in the past. There's no going back: for medium-to-large networks, the trend toward greater complexity will inevitably extend into the future. How network complexity creates service assurance challenges Increasing network complexity creates significant challenges for IT when it comes to ... [Read More]

Jul 31st, 2020 - Software as a service (SaaS) has made collaborating between geographically dispersed teams easier and more efficient. It’s replaced classic on-premises solutions across virtually every business function with cloud versions for everything from messaging, storing and sharing files to collaborating across documents, coordinating projects and more. But while SaaS has undoubtedly enhanced the way we work and collaborate, it has also brought about a host of new security challenges that place your cloud access controls and business-critical data at risk. Managing Disparate Apps Corporate security ... [Read More]

Jul 31st, 2020 - In his first public speaking engagement just weeks into his new role as acting assistant attorney general for the Criminal Division, Brian Rabbitt in a  session with the Ethics & Compliance Initiative shared his perspective on recent updates to the Evaluation of Corporate Compliance Programs Guidance and the Foreign Corrupt Practices Act (FCPA) Resource Guide, as well as the Justice Department’s thought process behind some of the more significant revisions. Below is an abridged version of that conversation. About Brian Rabbitt   Brian Rabbitt is Acting Assistant Attorney General for the ... [Read More]

Jul 31st, 2020 - / Pixabay Returning to Work During a Global Pandemic: Cyber Risks After Lockdown Scott Watnik, a member of the litigation department and co-chair of the Cybersecurity practice at Wilk Auslander LLP in New York City, New York, discusses the cybersecurity needs companies will have as they begin to reopen after pandemic closures... Just three months ago, IT departments at companies across the world were focused on configuring networks, as well as installing equipment and software to make telecommuting work as efficient and safe (from a cybersecurity perspective) as possible. Now, as we enter the ... [Read More]

Jul 31st, 2020 - In recent years, Enterprise Risk Management has become increasingly focused on cybersecurity risks. In a pre-COVID 2019 survey report by Harvard Business Review (HBR) Analytic Services and pwc , survey respondents were asked what the CISO/cybersecurity leader’s principal responsibilities should be in the next three years. The top two responses were to build an organization-wide cybersecurity culture (63 percent) and formulate strategy for cybersecurity (51 percent). Next, tied with build and maintain threat-resistant systems, was work with the risk management function to integrate cyber ... [Read More]

Jul 29th, 2020 - Understanding HIPAA compliance is a requirement in developing a healthcare app for the U.S. market When developing a healthcare app, you need to consider data protection. In 1996, the U.S. government enacted the Health Insurance Portability and Accountability Act (HIPAA) to protect the personal information of patients. In this guide, we’ll discuss who has to follow HIPAA requirements, penalties and components. Also, you can find tips to follow. HIPAA is intended to protect the flow of healthcare data and patients’ personal information from fraud and theft. The act has 115 pages with a ... [Read More]

Jul 27th, 2020 - Just what is the Cybersecurity Maturity Model Certification (CMMC), and how can you make sure you can meet it? See exactly how ARIA Cybersecurity Solutions’ track record in providing solutions to achieve compliance with GDPR, HIPAA, and other data privacy regulations now puts us in a unique position to meet the CMMC requirements.   What is the Cybersecurity Maturity Model Certification (CMMC), and How Can You Make Sure You’re in Compliance? One thing is clear: Cybersecurity threat risk will continue to get worse, not better. This trend (and realization) led the Department of Defense ... [Read More]