DoDs New Cybersecurity Certification

Explaining the DoD’s New Cybersecurity Certification

By 2026, any contractor that works with the Department of Defense must meet the standards set by version 1.0 of its Cybersecurity Maturity Model Certification (CMMC). The Pentagon released the new standards on Jan 31, which will require third-party certification of cyber resilience from DoD contractors and subcontractors. For contractors who hope to work with…
Read More
How To Respond To A Data Subject Access Request Under GDPR

How to Respond to a Data Subject Access Request Under GDPR

Under the European Union’s General Data Protection Regulation (GDPR), consumers have the right to request a copy of their personal data from companies who hold it. This type of request is known as a Data Subject Access Requests (DSAR). Responding to a DSAR is not difficult with the proper amount of advance preparation. An updated…
Read More
Cybersecurity Is A Team Effort

Cybersecurity: Executives Throughout the Organization Must Be Involved

We live in a world where cybersecurity breaches have become everyday occurrences. The headlines generally describe the same scenario, played out again and again. Bad actors find a backdoor, companies and government agencies are blindsided, consumer data is compromised. The next day, or the next week, it happens all over again. I can point to…
Read More
Third Part Vendor Compliance

How To Continually Assess If Your Vendors Are In Compliance

Outsourcing some of your business operations to a third-party vendor comes with a lot of perks – like improving operational efficiency by saving money on infrastructure and maintenance – as is the case when moving data into cloud platforms. However, hiring a vendor doesn’t mean you’re off the hook when it comes to securing your…
Read More

Synopsis of Recently Passed New York State Laws on Cybersecurity

Two new privacy protection laws were signed into law by New York Governor Andrew Cuomo on July 25, 2019. (NY State Law S.5575B/A.5635 – or SHIELD Act – “Imposes Stronger Obligations on Businesses Handling Private Customer Data to Provide Proper Notification of Security Breaches.”). The law takes effect 240 days from the date of signing…
Read More

U.S. Federal Reserve Breaks Ground with Proposed Cybersecurity Standards

It is no secret that malicious cyberattacks are increasing dramatically. Morphisec Technologies, a global cybersecurity firm, released its 2019 Consumer Financial Cybersecurity Threat Index in June 2019. The report states that financial institutions, globally, are targeted 300 times more often than other business sectors. That breaks down to about 2,000 attacks a day.  Verizon’s 2019 Data…
Read More
Back To Top