In April 2021 the United States Department of Labor (DOL) issued its first guidance to help retirement plan sponsors and administrators implement a sound cyber security program. The Department of Labor estimates that over $9 trillion in assets are held in various retirement plans, making them prime targets for hackers. The Employee Benefits Security Administration (EBSA) […]
Author Archives: David Lineman
New product helps Tax Preparers address IRS Cyber Security Plan requirements. Information Shield – a leading provider of cyber security compliance software – today announced the release of its latest time-saving compliance product. The new IRS Cyber Security Plan Template enables tax preparers quickly build a cyber security plan that addresses the latest IRS requirements. […]
The IRS now requires that every tax preparer that files electronic returns must have a Cyber Security Plan in place. For months our customers have asked us to provide a quality solution that (1) Addresses key IRS Cyber Security requirements and (2) is affordable for a small office. Today we announced the release of our […]
First Enforcement Action Signals a Need for Cyber Review In March 2017, the New York State Department of Financial Services passed their cyber law - Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R. Part 500 (NYS-DFS 500). The law imposed formal cyber security requirements for covered insurance entities and their vendors. This law was groundbreaking at [...]
Compliance platform update streamlines Tier 3 compliance with the US Cyber Security Framework Information Shield – a leading provider of cyber security compliance software – today announced a new Control Baseline for the US Cyber Security Framework (US-CSF). This new template dramatically reduces the time and cost of building and validating an information security program [...]
New “IT Security Made Easy” platform automates key compliance requirements of new DFS cyber data protection law May 4, 2017 – Information Shield – a leading provider of IT security compliance software – announced support for the new NYS Department of Financial Services (DFS) Cyber Law. Information Shield’s compliance software platform dramatically reduces the time and […]
Attorneys Create New Control Framework The Association of Corporate Counsel (ACC), which represents over 42,000 in-house counsel across 85 countries, recently released a new control model to help organizations interact with outside parties when dealing with sensitive information. This is among the many new business domains areas where vendor risk management has become a key issue. […]
Many of our Information Shield customers are asking how to address “Shadow IT” within their information security policy programs. In this article we will identify the common risks with unapproved IT devices and services and how to address them in your governance and security policy framework. What is “Shadow IT”? In short, “shadow IT’ is […]
Third Party Vendors and Data Breaches So the bad news is sinking in. Data breach reports are showing that significant information security risk can lie with third party vendors. Starting with the now-famous Home Depot breach, a steady stream of breaches have been reported that involve third party vendors. In some studies, as many as […]
Many financial services firms are currently building programs to comply with the information security requirements of the Securities and Exchange Commission (SEC). In this article we discuss some key information security policy and compliance lessons that organizations can learn and adopt for their own programs. In 2016 the SEC has increased its focus on cyber […]