In September 2018, Wendy’s settled class-action lawsuits brought by financial institutions and customers whose personal information was compromised by a data breach that impacted 1,000+ of the restaurant chain’s locations. The settlements totaled over $50M, surpassing the payments resulting from the Target and Home Depot breaches. Since federal Investigators were involved to understand the reasoning…
Read More
Massachusetts recently created some big changes to its data breach notification law, and it is imperative that every company knows how to fully comply with it before it comes into effect on April 11, 2019. Learning about the Massachusetts data breach notification law and preparing for it could potentially save you from many headaches and…
Read More
Last month, Dark Reading published a round-up of 2019 cyber-security spending outlooks from the likes of Gartner, Forrester, and InformationWeek. And, security spending is up in 2019 — way up. Read our blog post to find out what is driving increased investment among business and IT leaders and why. Plus, learn how your business priorities…
Read More
Canada recently created a new data breach notification law, one that requires businesses to record all breach information and notify the appropriate authorities as well as those affected. This blog gives you all the details you need to know—even if you’re not a Canadian company or currently doing business in Canada. We also describe many…
Read More
We all know that meeting the requirements set forth in the HIPAA compliance policy is mandatory for any healthcare, medical records, insurance, or other healthcare-related business. Securing individuals’ electronic protected health information (ePHI) is the most critical step to complying with HIPAA. Learn more about CSPi’s innovative security and HIPAA compliance solutions at the HIMSS19…
Read More
The first article in our two-part series introduced the concept of a “whole brain” approach to achieving secure DevOps. This article continues the discussion by taking a closer look at the five best practices every organization should implement to achieve a secure DevOps model. Designing a “whole brain” approach to SecDevOps is challenging, but not…
Read More
Our last blog of 2018 takes a closer look at four critical security developments and trends … and how we can apply to improve security and compliance in 2019. Whether you’re looking for a better way to manage the inevitable breach, comply with an increasingly complex landscape of data privacy regulations, or determine how you…
Read More
What is the Consumer Data Protection Act of 2018? It’s a struggle for organizations to keep track of all of the data privacy laws by state, country, or industry, but also, and more importantly, to ensure compliance with their varying requirements. A proposed new data privacy law takes a hard line on personal data usage…
Read More
To be confident that their applications and associated data are protected from the start of development, organizations need to take a holistic view to the concept of Secure DevOps by addressing security considerations upfront during planning and development. Now there’s a way to let right-brain application developers and left-brain security teams focus on what they…
Read More
A first article examined DevOps and questioned why security usually isn’t added early enough in application development processes, and as a result, lead to application and data security becoming an afterthought. In this second article, we look at new recommendations and specific best practices companies should consider to make current DevOps methodologies more secure, by creating…
Read More