Regulatory Compliance Archives - Information Shield

FTC Safeguard Compliance, GLBA Compliance, SEC Security Policies

Security Policies for Regulation S-P: GLBA Data Privacy

Posted on October 9, 2024October 9, 2024 by David Lineman

09
Oct

In 2024 the SEC formally adopted updates to “Regulation S-P: Privacy of Consumer Financial Information and Safeguarding Customer Information.” The rules apply to financial institutions that collect and manage nonpublic personal information about consumers (PII). First adopted in 2000, the privacy requirements have continually evolved and major updates were approved in 2024. The updated privacy […]

Continue reading →

FTC Safeguard Compliance, Information Security Policies, Press Releases

Simplify Compliance with EPA Cyber Security Requirements

Posted on October 4, 2024October 9, 2024 by David Lineman

04
Oct

Understand the key cyber security requirements of the Safe Drinking Water Act (SDWA) and see how to effectively build and maintain and written information security program to maintain compliance. NOTE: When this article was originally published, Cyber Audit were going to be part of the Sanitary Surveys. That requirement was removed. But the Cyber Security […]

Continue reading →

Regulatory Compliance, Vendor Risk Management

Streamline DORA Compliance

Posted on September 10, 2024October 7, 2024 by David Lineman

10
Sep

The Digital Operational Resilience Act (Regulation (EU) 2022/2554) dramatically increases the cyber security burden of financial services entities operating in the EU or serving the EU business community. In short, every EU financial entity will need to build and maintain a robust cyber security program. What is DORA (The Digital Operational Resilience Act)? The Digital Operational […]

Continue reading →

Information Security Policies, Regulatory Compliance

What is required in a Security Plan for HAZMAT HM 232?

Posted on April 24, 2024October 7, 2024 by David Lineman

24
Apr

In April 2024 the United States Department of Transportation finalized new requirements for the safe transportation of hazardous materials (Hazmat HM-232). HM-232 requires shippers and transporters of hazardous materials to create a formal, written security plan to prevent equipment or cargo from being used as weapons in terrorist attacks. According to the law, the plan […]

Continue reading →

Press Releases, Regulatory Compliance, Water Sector Security

Information Shield Supports New Cyber Guidance for Water and Wastewater Systems Sector

Posted on February 9, 2024September 17, 2024 by David Lineman

09
Feb

Information Shield supports new Cyber Requirements for EPA FBI recommendations. Securing Water Systems.

Continue reading →

FTC Safeguard Compliance, Information Security Policies

Simplify Compliance with NYS-DFS Cyber Law

Posted on December 6, 2023December 6, 2023 by David Lineman

The New York Department of Financial Services (NYS-DFS) recently updated the model cyber security law (23 NYCRR 500) that requires financial institutions to build, update and validate a robust cyber security program. In this article we discuss key requirements and how organizations can simplify the compliance process. What is the NYS-DFS Cyber Security Law? The […]

Continue reading →

FTC Safeguard Compliance, Information Security Policies, Press Releases

Simplify Compliance with NADA FTC Safeguards Rule

Posted on February 27, 2023September 17, 2024 by David Lineman

27
Feb

Understand the key requirements of the FTC Safeguards Rule as it applies auto-dealerships and see how to effectively build and maintain and written information security program to maintain compliance. What are the NADA cyber security requirements? The National Automotive Dealers Association (NADA) proposed a set of cyber security requirements to help protect private customer data […]

Continue reading →

CyberSecurity Framework, Regulatory Compliance

Compliance with NIS 2 Directive Cyber Security

Posted on January 18, 2023January 18, 2023 by David Lineman

NIS2 Directive What is the NIS 2 Directive? The NIS 2 Cyber Directive is move by the EU to set a new standard for cyber security across the member states. The EU Parliament calls it “A high common level of cybersecurity in the EU.” NIS 2 replaces the original Network and Information Security (NIS) Directive, […]

Continue reading →

CyberSecurity Framework, Information Security Policies, Insurance Industry Security (NAIC)

Simplify NAIC Data Security Law Compliance

Posted on September 13, 2022September 13, 2022 by David Lineman

What is the NAIC Data Security Model Law? The National Association of Insurance Commissioners (NAIC) Data Security Model Law (Model Law) requires insurers and other entities licensed by state insurance departments to develop, implement, and maintain an information security program that contains key cyber security safeguards and management oversight. The NAIC was law adopted in […]

Continue reading →

FTC Safeguard Compliance, Information Security Policies

Simplify Compliance with FTC Safeguards Rule

Posted on July 1, 2022January 18, 2023 by David Lineman

Understand the key requirements of the FTC Safeguards Rule and how to effectively build and maintain and written information security program to maintain compliance. What is the FTC Safeguards Rule? The Federal Trade Commission (FTC) created the Standards for Safeguarding Customer Information (“FTC Safeguards Rule”) to ensure that businesses maintain a cyber security program to protect private […]

Continue reading →

Login

Register