SecurityScorecard Blog: Compliance

Cybersecurity and privacy professionals may be dubbing 2019 as the “Year of Privacy.” As with previous years, the industry faced multiple data breaches that negatively impacted millions of individuals globally. As we drive towards... Keep Reading

The Brazilian Data Protection Act - known as the Lei Geral de Proteção de Dados Pessoais (LGPD) - will come into effect in August 2020. The LGPD is designed to regulate the collection, use, processing and storage of personal data ... Keep Reading

The holiday shopping is right around the corner, but unfortunately Black Friday isn’t just an opportunity for shoppers and retailers — it’s also an opportunity for cyber criminals. According to ACI Worldwide, fraud attempt... Keep Reading

As a Chief Information Security Officer (CISO), your job includes knowing everything about cybersecurity, particularly your own company’s. A security compliance framework makes it so that all of your data, your clients’ data, and ... Keep Reading

SecurityScorecard’s compliance tab within our security ratings platform is an important tool for customers who may be working in regulated industries. By mapping any cyber issues we find across our 10 factors to applicable requi... Keep Reading

As legislative bodies continue to enact regulatory requirements reinforcing data privacy and security, the New York State legislature followed in the footsteps of several recent laws, including the General Data Protection Regulati... Keep Reading

Compliance isn’t easy: it’s expensive, time consuming, and regulations are constantly changing. It may be hard to get buy-in from employees or leadership who see compliance as a barrier to productivity, and it may also be difficul... Keep Reading

Many organizations recognize that SecurityScorecard is a highly effective weapon in the cybersecurity toolkit for a Chief Information Security Officer (CISO), but the link to the legal and compliance departments is often less well... Keep Reading

FIPS 140-3 is here. On Sunday September 22, Federal Information Processing Standards Publication (FIPS) 140-3, Security Requirements for Cryptographic Modules went into effect. FIPS 140-3 is the replacement for 140-2, which had ... Keep Reading