Compliance and Regulations

This is a complete overview of the HIPAA Privacy Rule. Learn about what the Privacy Rule is and what you need to do to comply in this in-depth post.

This is a complete overview of compliance monitoring best practices. Learn why compliance monitoring is required for many industries in this in-depth post.

The global average cost of a data breach have grew by 12 percent in the last five years to $3.92 million.

Sensitive data is information that must be protected against unauthorized access.

Protected health information (PHI) is any information about health status, provision of health care or payment for health care that is created or collected

This is a complete overview of HITECH Compliance. Learn how to ensure your organization is compliant with the HITECH Act in this in-depth post.

This is a complete overview of the top 11 questionnaires for IT vendor assessment. Learn which security questionnaire is right for you in this in post.

Which reigns supreme? COBIT, ITIL or TOGAF? Find out which of these frameworks is best for achieving a more secure and digitally resilient posture.

This is a complete guide to NIST SP 800-171. Learn how to comply with NIST SP 800-171 with this in-depth post.

The Personal Information Protection and Electronic Documents Act (PIPEDA) is the federal privacy legislation for private-sector organizations in Canada. 

The Brazilian General Data Protection Law (Lei Geral de Proteção de Dados Pessoais or LGPD) is a law that was passed by the National Congress of Brazil.

Compliance requires a system of record capable of satisfying audit criteria. Tripwire and Industrial Defender both offer solutions, but how do they compare

This is a complete overview of how to comply with Prudential Standard CPS 234. Learn about the key requirements and how to meet them in this in-depth post.

The APRA CPS 234 prudential standard aims to ensure that regulated Australian entities can protect themselves from cybercrime and security incidents.

This is a complete overview of security metrics. Learn how to use security metrics to maintain compliance with regulations in this in-depth post.

23 NYCRR 500 is a set of regulations from the NYDFS that places cybersecurity requirements on all financial institutions and financial services companies.