USA AI Bias Audit Laws The NY automated employment decision tools law Update as of December 15, 2022: Due to the volume of comments the NYC...
What is an Upstream EDE Entity?
There are three categories for an upstream EDE Entity: White-Label IssuersHybrid IssuersHybrid Non-Issuers For all upstream arrangements, the...
FedRAMP Makes Way for the New StateRAMP Review Process
Move over FedRAMP and make room for the State Risk and Authorization Management Program (StateRAMP). Who does StateRAMP Review...
Are You Ready for SWIFT ISO 20022 In November?
On July 5, 2018, an announcement was published by the Federal Reserve Board, which described the intent to adopt and migrate to the new...
DUNS Has Been Replaced, Say Hello to UEI
In this article, we look at the switch from DUNS to the Federal Contractor UEI Number. Early last month, the United States federal government...
PCI DSS v4.0 is being released NOW – What is known about the newest version?
If your organization is involved with credit card processing in any way, the PCI DSS (Payment Card Industry Data Security Standard) is integral to...
CMMC 2.0 – Extended-Release Dates Among Rule-Making Delays
In this article, we look at factors affecting DoD CMMC 2.0 Release Date. Since its initial release in the fall of 2021, the original CMMC model (now...
Is your Financial Institution aware of the FTC’s Final Rule Implemented in January 2022?
In October of last year, in an effort to strengthen data security measures, the Federal Trade Commission (“FTC”) announced that...
CMMC 2.0 Update – What Do These Changes Mean for Your Organization?
CMMC 2.0 Update Three major changes were announced for CMMC: fewer security tiers, new level definitions and requirements, and allowance for “Plan...
Is the CMMC Leaning Towards Self Certification for 2022?
In this article, we the progress toward CMMC Self Certification. That is the question that everyone is placing a major bet on. Unfortunately, the...
Are you ready to Attest to the 12/31/21 Federal Reserve Bank’s Security Standard?
In this article, we discuss the New FedLine Standard. Starting December 31st, 2021, all institutions that use FedLine Advantage or FedLine Web are...
PCI DSS v4.0 Update – Major Security Changes to the Payment Industry
Rapid changes in how payments are made, seemingly constant technology upgrades, and the relentless pursuit of providing secure transactions are all...
Major Update – ISO/IEC 27002:2022 Published
In this article, we look at the ISO 27002 Major Update. A Brief History of ISO (ISO 27002 Major Update) The origins of the ISO 27001/2 standard go...
Are You Ready for the 5-Tiered CMMC Framework this Fall?
Since November 30, 2020, the interim rule issued by the DoD initiated a 5-year phased rollout, introducing the new CMMC Framework...
The Skinny on your SWIFT CSCF v2021 Independent Assessment
Every year since, SWIFT has been building on its Customer Security Controls Framework (CSCF), continuously fighting against existing and...
Why You Should Care About NIST SP 800-53 Rev.5
In 2017, the National Institute for Standards and Technology (NIST) released an initial draft of the NIST SP 800-53 Rev. 5. Security...