A new report from the U.S. General Accounting Office examines the causes of the massive 2017 data breach by Equifax that compromised the personal data of more than 148 million Americans. The report contributes the debacle to the company’s failure to use common cybersecurity best practices, poor internal controls, and Read More
A new survey of the top risks that most concern chief internal auditors finds that cybersecurity and data privacy are among the issues that still cause the most headaches for company officials. The research, conducted by the Chartered Institute of Internal Auditors and based on responses from more than 300 Read More
The European Union’s new data privacy rules have been in effect for more than two months now, yet many companies haven’t done much to ensure they are abiding by them, according to a recent survey. The poll, conducted by Deloitte during a webcast in late June, found that only about Read More
The deadline is looming for banks and financial institutions that do business in New York to comply with new regulation that requires them to keep an audit trail of financial transactions for at least five years. Provisions of the Cybersecurity Regulation, which was passed in March 2017, will go into Read More
Gov. Jerry Brown signed the California Consumer Privacy Act of 2018 last week, hours after its unanimous approval by the State Assembly and Senate. When it takes effect, it will be the toughest data privacy law in the United States, with many similar provisions as the European Union’s General Data Read More
In a consent order signed with eight states, credit reporting agency Equifax agreed to adopt several measures to shore up weaknesses across a wide spectrum of its IT and data security operations. The order includes a provision to beef up its internal audit program. It requires better assessments of internal Read More
A new survey finds that corporate boards are expected to ask IT, IT audit, and other functions responsible for securing the company’s data and systems for more information on the effectiveness of cybersecurity programs. The survey, by Deloitte, found that 62.7 percent of C-suite and other executives expect board directors’ Read More
It didn’t take long for the lawsuits to start flying over allegations of non-compliance with the European Union’s new set of data governance rules. Austrian data privacy advocacy group None of Your Business (NOYB) filed suits against Facebook, Google, and Facebook subsidiaries WhatsApp and Instagram alleging that the tech firms Read More
It might be time for a data governance and compliance audit. A new survey by ISACA finds that more than two out of three companies aren’t fully prepared to comply with the European Union’s new General Data Protection Regulation (GDPR), which creates new rules for how companies manage and protect Read More
Companies will need to be more transparent about the management of employee data or risk getting caught on the wrong side of the European Union’s General Data Protection Regulation. GDPR takes effect May 25 and builds upon existing European data-privacy rules to protect personal identifiable information and to empower the Read More
