Compliance news, analysis, research, how-to, opinion, and video.

The top 6 Governance, Risk and Compliance certifications

CEOs are always on the lookout for dependable folks who can identify potential exposures and quantify the impacts of risk on an organization while protecting the interests of employees, shareholders, other organizations and the...

female cso executive

Andy Jassy Reinvent

Amazon makes it easier to lock down the cloud

Amazon unveiled a pair of services Wednesday that are designed to make it easier for companies to keep their cloud deployments secure and within the parameters they want.

fitbit hipaa compliant communications

Fitbit is now HIPAA compliant—is your business?

Fitbit's recent announcement that it's now HIPAA-compliant underscores the importance of meeting medical privacy regulations. But many firms that should be compliant, aren't. Your business could be one of them, even if you're not...

expiration date can

Expired certificates cost businesses $15 million per outage

The average global 5,000 company spends about $15 million to recover from the loss of business due to a certificate outage -- and faces another $25 million in potential compliance impact

Citibank credit card with an EMV chip

Debit cards lag credit cards in EMV migration, putting banks at risk

Three times as many credit cards will be chip-enabled by the end of the year as debit cards, making the slower banks bigger targets for cybercriminals.

cio success

Chief risk and compliance officer makes rare move to CIO

Marsh & McLennan Companies, a professional services organization, moves its chief risk and compliance officer to a broader, technology-focused role, highlighting the growing importance of technology strategy within large companies.

call center compliance problems

4 call center compliance traps—and what to do about them

Call centers reach and satisfy customers and stakeholders. They’re also threats to security and compliance—and major problems for those who oversee them. Here are four frequent compliance violations, and simple ways to avoid the.

Tech Giants and Diversity in the workplace

Are tech giants really diversifying their workforce?

It's laudable that so many Silicon Valley firms committed to increasing diversity in their workforce, but there's still a long way to go. looks at eight Silicon Valley titans' most recent statistics to see how they're faring a...

DOJ calls for encryption balance that includes law enforcement needs

Companies encrypting customer data should weigh the benefits to cybersecurity against needs of law enforcement, officials say

AT&T a closer partner of NSA than previously known, Snowden docs show

A new analysis of documents leaked by Edward Snowden highlights massive surveillance efforts with special help from AT&T

Mozilla tests a true stealth mode for Firefox

A new tool in prebeta is designed to block browser tracking across sites

DOJ calls for encryption balance that includes law enforcement needs

Companies encrypting customer data should weigh the benefits to cybersecurity against needs of law enforcement, officials say

How Japan's Privacy Visor fools face-recognition cameras

The visor angles overhead light into cameras, confusing computer vision systems

Oracle's new 'PULA' license promises unlimited database use in perpetuity

'We have seen them in the wild,' one consultant confirms

security Compliance Coach blog

7 steps to get your boss to take security and compliance seriously

It can be tough to get your company to give security and compliance the attention and resources they need. But people who use these techniques dramatically increase the odds that they'll get the boss's support. CSO Michael McAlpen...

Hackers show off long-distance Wi-Fi radio proxy at DEF CON

The device uses the 900 Mhz band but hides the data in the background radio noise

Carly Fiorina calls on Apple, Google to provide greater access for FBI

Republican candidate says public and private sector should share more information

Tech industry objects to terrorist activity reporting section in US legislation

Industry groups have asked the Senate to delete the section which requires them to report vaguely-defined terrorist activity

EFF-led group wants to give do-not-track some bite

The initiative is the first credible attempt to define what "do not track" actually means, according to backer

Load More