SEC Cybersecurity Guidance: Data Loss Prevention

As businesses are digitally transformed, our exposure to risk is changing. In the financial industry, the stakes are much higher. The SEC Cybersecurity Guidance helps registered investment advisors respond to these threats. It also makes sure that they have a plan in place to respond to them. For example, one such threat is the loss [...]

SEC Cybersecurity Guidance: Business Continuity Planning (Pt. 2)

Welcome back to SEC Cybersecurity Guidance: Business Continuity Planning.  The first steps (found here in Part 1) are: List your Specific Needs, and Discuss and Document... and here, in Part 2, we talk, and plan, and test. Disclaimer: we are STILL not lawyers.  We are cybersecurity practitioners who work with a lot of registered [...]

SEC Cybersecurity Guidance: Business Continuity Planning (Pt.1)

If you’ve come to this site, you’re probably doing some research about SEC Cybersecurity Guidance. As part of the OCIE Cybersecurity Initiative, #6 in the SEC cybersecurity guidance clearly states that business continuity planning is a priority. Here’s what the SEC Cybersecurity Guidance says: “Please provide a copy of the Firm’s written business continuity [...]

HIPAA Paper Shredding Companies

As a HIPAA Business Associate or Covered Entity, you may rely on shredding services to make it easy to safely destroy papers and electronic media. But how do you really know what they’re doing with your paper ? How can you be sure that you’re not exposed to bigger risks by giving them your sensitive [...]

By |2019-01-04T04:26:57+00:00September 4th, 2018|HIPAA, Physical Security|1 Comment