A key amendment to Canada's Personal Information Protection and Electronic Documents Act goes into effect on Nov. 1. What are the baseline standards for compliance, and how does this change impact risk transfer and mitigation?
While PIPEDA is not a new law and been on the books for a long time, what is coming is...
2018 has been an important year in Canada from a cybersecurity and privacy standpoint. The introduction of Canada's new National Cybersecurity Strategy in June of this year along with the upcoming mandatory breach notification requirements effective November 1, 2018 are just the tip of the iceberg. In a complex world...
On May 25, 2018, per the General Data Protection Regulation (GDPR), organizations with business ties to the European Union needed to comply to GDPR standards. The cost of non-compliance are stiff fines. The GDPR contains nearly 100 separate and nuanced articles that can be difficult to understand even if you are a...
The future of security is not all gloom and doom. We've learned important lessons over the past decade that can become your prescriptions for action.
Download this report to learn about these focus areas that will let you sleep at night:
Apps are the number one target, so shift your focus to the targets, and...
Money laundering: a crime as old as currency itself. It represents between two and five percent of global Gross Domestic Product (GDP)*. Cyber crime and money laundering are growing and evolving at a faster rate than many organizations can keep pace with, especially while staying within regulatory requirements. The...
We are in the age of mass data compromise. The growing, never-ending cycle of breach, fraud loss and the decline of customer experience characterizes life in today's globally connected digital world. Unfortunately, with crime rings amplifying their efforts and continuing to evolve these threats aren't going anywhere....
In today's dynamic threat landscape, "real-time" is the operative phrase - and it needs to apply both to threat detection and incident response. But what are the required security controls and tools?
Download this eBook on real-time capabilities and learn:
What's at risk for organizations that lack these tools and...
Will the Equifax breach upend the rules of the data breach notification game? Will it even be discussed in another year? Already, the breach is leading to tough questions about how personal data gets stored, sold and secured - or not - in the United States. Equifax also should consider itself lucky that it didn't lose...
The European Union's General Data Protection Regulation has been the buzz of 2017, and security leaders globally understand the regulation's basics, including the 72-hour breach reporting mandate, the May 2018 enforcement date and the noncompliance penalty of up to 4 percent of annual global revenue or 20 million...
Status check: With just several months to go until any organization that handles Europeans' personal data must comply with the EU's General Data Protection Regulation, or GPDR, how prepared are organizations? While the May 25, 2018, enforcement date is fast approaching, EU privacy watchdogs are continuing to issue...
The Question is WHEN? Here are some sobering facts:
54% of breaches remain undiscovered for months;
60% of an organization's data is stolen within hours of an attack.
So what can you do about it?
Learn how to Control Advanced Malware with More Visibility.
In a reminder of HIPAA's tough requirements for breach notification, federal regulators have issued a $475,000 financial settlement and corrective action plan for Chicago-based Presence Health tied to its tardy notification for a 2013 paper records breach affecting only about 800 individuals.
Community Health Plan of Washington, a not-for-profit insurance company, says a security vulnerability on the computer network of a business associate resulted in a breach affecting nearly 400,000 individuals.
"How secure are we?" That's one of the most common questions asked by boards and senior managers. But security and technology leaders do not always have ready answers, says Jacob Olcott of BitSight Technologies. Are they even using the right security metrics?
In an interview about cybersecurity metrics, Olcott...
The security of Internet-connected toys is in the limelight after toymaker VTech acknowledged suffering a data breach that affects 5 million accounts and personal information and photographs relating to more than 200,000 children.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing omnibus.healthcareinfosecurity.com, you agree to our use of cookies.