As each year passes and technology advances, businesses face an increasingly difficult task to maintain adequate security measures to protect their organizations’ assets and data. With this in mind, ...

Data protection concept reflecting the pivotal role of information security controls for companies. We often hear how poor data security can bring a business to its knees. It’s a worthwhile narrative; ...

Payment Card Industry Data Security Standards (PCI-DSS) are national standards from the Card Association and apply to all organizations anywhere in the country that process, transmit or store payment ...

The University at Buffalo Information Technology Office (UBIT)’s Information Security Program addresses the full range of information security issues that affect the university, and establishes a ...

This part examines the regulatory landscape for firms that process personal data. In a short period of approximately three years, the United States has created significant legal obligations to ...

An emerging area of concern for plan advisers might just be the actual data of the retirement plan itself, which could shape up to be a compliance issue for the plan sponsors they support. And of ...

Breaking news stories about breaches usually involve the compromise of millions of customer records. In July 2024, AT&T disclosed that the phone records of nearly all of its customers were exposed, ...

The Senate Judiciary Committee Thursday sent two bills to the floor that would tighten data security procedures and beef up notification of breaches. A measure sponsored by Judiciary Committee ...

An Information Security Plan (ISP) is designed to protect information and critical resources from a wide range of threats in order to ensure business continuity, minimize business risk, and maximize ...