Author Archives: David Lineman

Information Shield Simplifies IRS Cyber Plan Compliance

New product helps Tax Preparers address IRS Cyber Security Plan requirements. Information Shield – a leading provider of cyber security compliance software – today announced the release of its latest time-saving compliance product. The new IRS Cyber Security Plan Template enables tax preparers quickly build a cyber security plan that addresses the latest IRS requirements. […]

New IRS Cyber Security Plan Template simplifies compliance

The IRS now requires that every tax preparer that files electronic returns must have a Cyber Security Plan in place.  For months our customers have asked us to provide a quality solution that (1) Addresses key IRS Cyber Security requirements and (2) is affordable for a small office.   Today we announced the release of our […]

Remember NYS-DFS? First Enforcement Action

First Enforcement Action Signals a Need for Cyber Review In March 2017, the New York State Department of Financial Services passed their cyber law – Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R. Part 500 (NYS-DFS 500).   The law imposed formal cyber security requirements for covered insurance entities and their vendors.  This law was groundbreaking at […]

New Cybersecurity Certification Validates Program Maturity

Information Shield program enables any organization to validate cybersecurity practices HOUSTON, January 10, 2020 – Information Shield today announced the release of the Information Shield™ Cyber Certification.   This new program dramatically reduces the time and cost of validating cybersecurity readiness to management and third parties across the information supply chain. “Cyber regulations and vendor due-diligence […]

Information Shield Simplifies US-CSF Compliance

Compliance platform update streamlines Tier 3 compliance with the US Cyber Security Framework Information Shield – a leading provider of cyber security compliance software – today announced a new Control Baseline for the US Cyber Security Framework (US-CSF).   This new template dramatically reduces the time and cost of building and validating an information security program […]

Information Shield Simplifies NY DFS Cyber Law Compliance

New “IT Security Made Easy” platform automates key compliance requirements of new DFS cyber data protection law May 4, 2017 – Information Shield – a leading provider of IT security compliance software – announced support for the new NYS Department of Financial Services (DFS) Cyber Law. Information Shield’s compliance software platform dramatically reduces the time and […]

Simplify Compliance with new ACC Security Controls

Attorneys Create New Control Framework The Association of Corporate Counsel (ACC), which represents over 42,000 in-house counsel across 85 countries, recently released a new control model to help organizations interact with outside parties when dealing with sensitive information.  This is among the many new business domains areas where vendor risk management has become a key issue. […]

Shadow IT – Security Policy Pillars

Many of our Information Shield customers are asking how to address “Shadow IT” within their information security policy programs.    In this article we will identify the common risks with unapproved IT devices and services and how to address them in your governance and security policy framework. What is “Shadow IT”? In short, “shadow IT’ is […]

Third Party Vendor Security – Regulatory Drivers

Third Party Vendors and Data Breaches So the bad news is sinking in.   Data breach reports are showing that significant information security risk can lie with third party vendors.  Starting with the now-famous Home Depot breach, a steady stream of breaches have been reported that involve third party vendors. In some studies, as many as […]

Information Security Policy Lessons from Recent SEC Actions

Many financial services firms are currently building programs to comply with the information security requirements of the Securities and Exchange Commission (SEC). In this article we discuss some key information security policy and compliance lessons that organizations can learn and adopt for their own programs.   In 2016 the SEC has increased its focus on cyber […]