On November, 18, 2021, the Federal Deposit Insurance Corporation, the Board of Governors of the Federal Reserve System, and the Office of the Comptroller of the Currency issued a joint final rule to establish computer-security incident notification requirements for banking organizations and their bank service providers. The final rule's new definition narrows the focus to those incidents most likely to materially and adversely affect BOs, while still retaining general consistency with the NIST definition.
Read more »Tag: nist
-
Banking Organizations & Bank Service Providers Subject to New Computer-Security Incident Notification Rule Posted on: November 24, 2021 In: Data Privacy & Cybersecurity
-
Fraud Liability for Government Contractors with Lax Cybersecurity Posted on: October 22, 2021 In: Data Privacy & Cybersecurity
The Department of Justice announced on October 6, 2021 the creation of a new Civil Cyber-Fraud Initiative to pursue penalties against government contractors who do not properly comply with the cybersecurity standards required by their contracts. This new risk, under the False Claims Act, means that CISOs should consult with their lawyers before starting cybersecurity compliance audits.
Read more »
Blog Search
Featured Posts
- March 08, 2022 FinCEN Alert: Malware/Ransomware Updates & New Perimeter Device Vulnerability
- February 14, 2022 Prevailing Wages: Who Needs to Pay Them & What Happens When They Don’t
- December 29, 2021 Recent Amendment to New York State Technology Law Demonstrates Rapid Evolution of Privacy Laws
- December 15, 2021 Which States Are Paying More Money in 2022: An Overview of Minimum Wage Increases Across the Country
- June 11, 2021 Using Artificial Intelligence to Track Growing Remote Workforce and Related Litigation Implications
- February 03, 2021 Trade Secrets Litigation Just Got More Complicated
Blog Tags
accounting firms
alabama
arkansas
audit
audit logging
bank secrecy act
biometric data
breach notification
california
canada
ccpa
cisa
client notification
colorado
commission
congress
connecticut
consumer notification
consumer rights
coronavirus
covid-19
cpra
cryptocurrency
cyber insurance
cybersecurity
cyber threat
cyberwarfare
data breach
data privacy
data protection
data security
delaware
email
employment
equifax
eu
eu-u.s. privacy shield
european union
executive order
fbi
fcra
federal trade commission
financial services
fincen
fraud
ftc
gdpr
hacking
healthcare
hhsocr
hipaa
holiday season
human resources
identity theft
illinois
incident response
information security
irs
legislation
legislative alert
malware
managed service providers
maryland
massachusetts
microsoft exchange servers
microsoft office 365
multi-factor authentication
multi-factor identification
new jersey
new mexico
new york
ninth circuit
nist
nist security controls
opt out
personal data
personal information
phishing
protected health information
ransomware
red team
regulations
reporting requirements
russia ukraine conflict
social engineering
social media
ssn
statute
strengthening american cybersecurity act
students
supreme court
tax returns
utah
video-teleconferencing
virginia
w2
washington
websites
workplace policy
zoom