Information Security Policy Blog

The latest news and articles relating to information security policies and regulatory compliance.  Bookmark this page or subscribe to our Policy Solutions Newsletter for regular updates.
Simplify Compliance with EPA Cyber Security Requirements
July 3, 2023

Understand the key cyber security requirements of the new EPA Cyber Rule for water and see how to effectively build and maintain and written information security program to maintain compliance. What are the [...]

Read More
3 Ways to Validate your Cyber Security Program
April 26, 2023

If you are handling sensitive data in your business, sooner or later you will be asked to “validate” your cyber security program. This can happen for several reasons. A large customer or prospect [...]

Read More
New Certification Validates Cyber Security Program Readiness
April 19, 2023

The Information Shield Cyber Certification enables any business to effectively demonstrate cyber security readiness to third parties Information Shield today announced the release of the Information Shield Cyber Certification ™. This new program dramatically simplifies [...]

Read More
8 Rules for Passing Cyber Vendor Assessments
April 18, 2023

We often speak to businesses struggling to pass a cyber security assessment from one of their key clients. The business has received a huge spreadsheet with 100+ cyber security questions, many of which [...]

Read More
Simplify Compliance with NADA FTC Safeguards Rule
February 27, 2023

Understand the key requirements of the FTC Safeguards Rule as it applies auto-dealerships and see how to effectively build and maintain and written information security program to maintain compliance. What are the NADA [...]

Read More
Compliance with NIS 2 Directive Cyber Security
January 18, 2023

NIS2 Directive What is the NIS 2 Directive? The NIS 2 Cyber Directive is move by the EU to set a new standard for cyber security across the member states. The EU Parliament [...]

Read More
Simplify NAIC Data Security Law Compliance
September 13, 2022

What is the NAIC Data Security Model Law? The National Association of Insurance Commissioners (NAIC) Data Security Model Law (Model Law) requires insurers and other entities licensed by state insurance departments to develop, [...]

Read More
Key Elements of Information Security Policies
August 26, 2022

What is an information security policy? An Information Security Policy is a formal document that defines controls within your information security program. An information security policy is a high-level business rule that must [...]

Read More
Simplify Compliance with FTC Safeguards Rule
July 1, 2022

Understand the key requirements of the FTC Safeguards Rule and how to effectively build and maintain and written information security program to maintain compliance. What is the FTC Safeguards Rule? The Federal Trade [...]

Read More
The ISO 27002:2022 Update – What Happened?
June 2, 2022

In March 2022 the International Standards Institute (ISO) made an official update to the cyber security standard ISO/IEC 27002. The last update was in 2013, so nine years have passed. This is significant [...]

Read More
The IRS Data Security Plan: FAQ
May 5, 2022

Any IRS provider can develop a Data Security Plan using a quality Template. [...]

Read More
Information Shield Enables SEC Cyber Compliance
April 13, 2022

April 13, 2022 – Information Shield today announced support for the new 2022 proposed SEC Cyber Risk requirements. Organizations can address the new security policy and record-keeping requirements in a single integrated solution. [...]

Read More
Comply with new SEC Cybersecurity Risk Rules
April 13, 2022

In February 2022 the Securities and Exchange Commission (SEC) voted to enhance the cyber security requirements for registered investment advisers (including registered investment companies and investment funds). The proposed SEC cyber risk management [...]

Read More
How to Develop an IRS Data Security Plan
March 30, 2022

The Internal Revenue Service (IRS) recently added a requirement for all tax preparers to develop a “Data Security Plan” to protect customer data. The IRS responded to growing threats against small businesses that [...]

Read More
Information Shield Enables Department of Labor Cyber Requirements
April 21, 2021

In April 2021 the United States Department of Labor (DOL) issued its first guidance to help retirement plan sponsors and administrators implement a sound cyber security program.  The Department of Labor estimates that over [...]

Read More
Information Shield Simplifies IRS Cyber Plan Compliance
January 27, 2021

New product helps Tax Preparers address IRS Cyber Security Plan requirements. Information Shield – a leading provider of cyber security compliance software – today announced the release of its latest time-saving compliance product. [...]

Read More
New IRS Cyber Security Plan Template simplifies compliance
January 26, 2021

The IRS now requires that every tax preparer that files electronic returns must have a Cyber Security Plan in place.  For months our customers have asked us to provide a quality solution that [...]

Read More
Remember NYS-DFS? First Enforcement Action
August 18, 2020

[...]

Read More
Information Shield Simplifies US-CSF Compliance
September 25, 2019

[...]

Read More
Information Shield Simplifies NY DFS Cyber Law Compliance
May 5, 2017

New “IT Security Made Easy” platform automates key compliance requirements of new DFS cyber data protection law May 4, 2017 – Information Shield – a leading provider of IT security compliance software – announced [...]

Read More