Financial Services, Government and Insurance - Information Management Today

U.S. banking regulators order banks to notify cybersecurity incidents in 36 hours

Security Affairs

NOVEMBER 20, 2021

banking regulators this week approved a rule that obliges banks to report any major cybersecurity incidents to the government within 36 hours of discovery. Major cybersecurity incidents are attacks that impact operations of the victims or the stability of the US financial sector. Follow me on Twitter: @securityaffairs and Facebook.

Cybersecurity

Cybersecurity Financial Services Insurance Ransomware

Digital Preservation -- High Stakes for Finance and Insurance Companies

AIIM

FEBRUARY 22, 2018

Nowhere is this truer than in the financial services sector. In a recent AIIM survey, 85% of finance and insurance executives said that digital preservation was “important” or “very important” to their organizations – even higher than the 77% reported in other industries.

Digital preservation

Digital preservation Insurance Financial Services Digital transformation

Data Protection in Financial Services Week 2022

Data Matters

FEBRUARY 25, 2022

Sidley and OneTrust DataGuidance are pleased to announce that registration is now open for their annual Data Protection in Financial Services (DPFS) Week. Join us from February 28 – March 3 for DPFS Week 2022 , a series of webinars looking at the impacts of data privacy across the financial sector.

Financial Services

Financial Services Privacy Data Privacy Cybersecurity

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Top predictions for financial services in 2023

OpenText Information Management

JANUARY 5, 2023

With inflation, rising interest rates and general economic uncertainty, last year presented several challenges for financial services institutions (FSIs).

Financial Services

Financial Services Government Customer Experience Content services

First American Financial Pays Farcical $500K Fine

Krebs on Security

JUNE 18, 2021

The SEC says First American derives nearly 92 percent of its revenue from its title insurance segment, earning $7.1 Title insurance protects homebuyers from the prospect of someone contesting their legitimacy as the new homeowner. Title insurance is not mandated by law, but most lenders require it as part of any mortgage transaction.

Insurance

Insurance Risk Financial Services Mining

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Security Affairs

SEPTEMBER 1, 2020

According to the experts, the threat actors are merely trying to monetize their efforts selling information that have no intelligence value for the Iranian Government. In late July 2020, Crowdstrike spotted a threat actor associated with PIONEER KITTEN that was attempting to sell access to compromised networks on an underground forum.

Access

Access Financial Services Retail Insurance

The Financial Service and Insurance Industries Need Intelligent Document Processing; Here’s Why

Rocket Software

MARCH 14, 2022

Analyst firm IDC recently published a Vendor Spotlight report featuring ASG Mobius Content Services (Mobius) and its applications in the financial service and insurance industries. IDP Trends in the Financial and Insurance Industries. Challenges to Effective IDP.

Financial Services

Financial Services Insurance Digital transformation Paper

New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance

Data Matters

FEBRUARY 10, 2021

On February 4, 2021, the New York Department of Financial Services (NYDFS) issued Circular Letter No. 2 announcing a Cyber Insurance Risk Framework (the Framework) that describes industry best practices for New York-regulated property/casualty insurers. Insurers should: Establish a Formal Cyber Insurance Risk Strategy.

Insurance

Insurance Financial Services Cybersecurity Risk

New York Department of Financial Services Reaches $1 Million Dollar Settlement With First American Title Insurance in Data Breach Investigation

Hunton Privacy

DECEMBER 4, 2023

On November 28, 2023, the New York Department of Financial Services (“NYDFS”) announced that First American Title Insurance Company (“First American”), the second-largest title insurance company in the United States, would pay a $1 million penalty for violations of the NYDFS Cybersecurity Regulation in connection with a 2019 data breach.

Financial Services

Financial Services Data breaches Insurance Cybersecurity

Simplifying Compliance in the Complex U.S. FinServ Regulatory Landscape

Thales Cloud Protection & Licensing

JANUARY 16, 2025

However, as important as PCI may be, United States financial services organizations operate in one of the worlds most stringent and complex compliance landscapes. Understanding the US FinServ Compliance Landscape The US financial services industry is subject to a vast number of laws and regulations.

Compliance

Compliance Financial Services Encryption Insurance

MY TAKE: Identity ‘access’ and ‘governance’ tech converge to meet data protection challenges

The Last Watchdog

FEBRUARY 25, 2019

based supplier of identity access management (IAM) systems, which recently announced a partnership with Omada, a Copenhagen-based provider of identity governance administration (IGA) solutions. Governance and attestation quickly became a very big deal. Compliance became a huge driver for governance and attestation,” Curcio said. “It

Access

Access Government Authentication Data breaches

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024

Thales Cloud Protection & Licensing

OCTOBER 24, 2024

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024 madhav Fri, 10/25/2024 - 06:09 The next major deadline for compliance with the updated cybersecurity rules from the New York State Department of Financial Services (NYDFS) is November 1, 2024.

Cybersecurity

Cybersecurity Financial Services Encryption Compliance

Data Governance Tools: What Are They? Are They Optional?

erwin

NOVEMBER 14, 2019

Data governance tools used to occupy a niche in an organization’s tech stack, but those days are gone. The rise of data-driven business and the complexities that come with it ushered in a soft mandate for data governance and data governance tools. Research indicates business leaders recognize the need for data governance tools.

Government

Government Data breaches Metadata GDPR

NY Department of Financial Services Issues Reminder for Cybersecurity Filing Deadline

Hunton Privacy

JANUARY 24, 2018

On January 22, 2018, the New York Department of Financial Services (“NYDFS”) issued a press release reminding entities covered by its cybersecurity regulation that the first certification of compliance with the regulation is due on or prior to February 15, 2018.

Financial Services

Financial Services Cybersecurity Compliance Insurance

NYDFS issues significant guidance on insurers using AI or external data

Data Protection Report

FEBRUARY 2, 2024

On January 17, 2024 the New York Department of Financial Services (“NYDFS”) published a Proposed Insurance Circular Letter (“Proposed Circular”) regarding the use of artificial intelligence systems (“AIS”) and external consumer data and information sources (“ECDIS”) in insurance underwriting and pricing.

Insurance

Insurance Artificial Intelligence Risk Compliance

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services

Financial Services Cybersecurity Insurance Risk

Multinational ICICI Bank leaks passports and credit card numbers

Security Affairs

APRIL 20, 2023

In 2022, the ICICI Bank’s resources were named a “critical information infrastructure” by the Indian government – any harm to it can impact national security. ICICI Bank’s response Threat to financial accounts Finance and insurance are one of the most targeted industries by cybercriminals.

Personal data

Personal data Phishing Risk Communications

U.S. and Foreign Cybersecurity and Intelligence Agencies Recommend Measures to Counteract Threat of Russian Cyberattacks

Data Matters

JANUARY 28, 2022

The advisory was promptly endorsed by the National Cyber Security Centre, a division of Government Communications Headquarters (“GCHQ”), a UK intelligence agency. government, especially in light of ongoing tensions between the U.S. First , all of the reports specifically focus on the threat of Russian state-sponsored cyberattacks.

Cybersecurity

Cybersecurity Financial Services Authentication Government

BEST PRACTICES: Rising complexities of provisioning identities has pushed ‘IGA’ to the fore

The Last Watchdog

APRIL 3, 2019

Identity governance and administration, or IGA , has suddenly become a front-burner matter at many enterprises. Related: Identity governance issues in the age of digital transformation. I had the chance at RSA 2019 to visit with Mike Kiser, global strategist at SailPoint , an Austin, TX-based supplier of IGA services to discuss this.

Digital transformation

Digital transformation Insurance Compliance Healthcare

NYDFS Imposes Fine of $5 Million on Carnival for Cybersecurity Breaches

Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp. Since Carnival was licensed by the Department to sell insurance in NY State, it was treated as a covered entity under the Cybersecurity Regulation.

Cybersecurity

Cybersecurity Insurance Phishing Ransomware

New York Regulators Call on Insurers to Strengthen the Cyber Underwriting Process

Hunton Privacy

FEBRUARY 25, 2021

As reported on the Hunton Insurance Recovery blog , on February 4, 2021, the New York Department of Financial Services (“NYDFS”), which regulates the business of insurance in New York, has issued guidelines, in the Insurance Circular Letter No. sought coverage for expenses under its property insurance policy.

Insurance

Insurance Cybersecurity Risk Education

MyPayrollHR CEO Arrested, Admits to $70M Fraud

Krebs on Security

SEPTEMBER 27, 2019

” The government alleges Mann was kiting millions of dollars in checks between his accounts at Bank of American and Pioneer from Aug. For more than a decade, MyPayrollHR worked with California-based Cachet Financial Services to process payroll deposits for MyPayrollHR client employees. .” 1, 2019 to Aug.

Financial Services

Financial Services Insurance Cloud IT

Three data-driven trends to watch in financial services in 2022

Collibra

JANUARY 18, 2022

The financial services industry has had a longstanding tradition of being at the forefront of adopting new technologies. Financial institutions operate in a highly complex data landscape, with petabyte-scale data residing across thousands of data sources, spread across on-premises and multi-cloud environments.

Financial Services

Financial Services Cloud Government Risk

Four Use Cases Proving the Benefits of Metadata-Driven Automation

erwin

FEBRUARY 7, 2019

As such, traditional – and mostly manual – processes associated with data management and data governance have broken down. The banking, financial services and insurance industry typically deals with higher data velocity and tighter regulations than most. Metadata-Driven Automation in the Insurance Industry.

Metadata

Metadata Healthcare Insurance Financial Services

From networking to knowledge: The impact of Collibra User Groups

Collibra

MARCH 26, 2025

Some of the user groups Collibra offers: Industry-specific groups: Financial services, healthcare, life sciences, insurance, higher education and more Regional groups: Chicago, UK, Canada, Benelux and Nordics, DACH (and growing!)

Financial Services

Financial Services Insurance Education Government

GUEST ESSAY: Massive NPD breach tells us its high time to replace SSNs as an authenticator

The Last Watchdog

SEPTEMBER 24, 2024

Credit monitoring services provide ongoing tracking of credit reports for suspicious activity, and some even offer insurance for identity theft-related losses. As breaches become more frequent, credit protection services become a more attractive option for those seeking peace of mind and financial security.

Authentication

Authentication IT ROT Compliance

Keeping Up with New Data Protection Regulations

erwin

APRIL 11, 2019

Some industries, such as healthcare and financial services, have been subject to stringent data regulations for years: GDPR now joins the Health Insurance Portability and Accountability Act (HIPAA), the Payment Card Industry Data Security Standard (PCI DSS) and the Basel Committee on Banking Supervision (BCBS). employees).

GDPR

GDPR Compliance e-Discovery Metadata

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk

Risk Financial Services Insurance Data breaches

2024 Cybersecurity Laws & Regulations

eSecurity Planet

SEPTEMBER 21, 2024

The landscape of cybersecurity laws and regulations today is set to undergo significant changes, impacting businesses, government entities, and individuals alike. HIPAA mandates that healthcare providers, insurers, and business associates implement robust security measures to safeguard patient data.

Cybersecurity

Cybersecurity Computer and Electronics Compliance Privacy

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

See the Top Governance, Risk and Compliance (GRC) Tools. are subject to laws such as the Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and Clinical Health Act (the HITECH Act), as well as regulations such as the Clinical Laboratory Improvements Amendments (CLIA).

Data Privacy

Data Privacy Compliance Privacy Security

Top 6 Best Practices for Data Governance

Collibra

MARCH 11, 2021

Data governance is a very intricate field, so implementing and sustaining data governance comes with a suite of challenges. Luckily, thousands, if not millions, of organizations use data governance to improve their operations, so you can learn from others’ mistakes and successes. Focus on the operating model.

Government

Government Communications Insurance Customer Experience

Researchers shared the lists of victims of SolarWinds hack

Security Affairs

DECEMBER 22, 2020

By decoding the #DGA domain names, we discovered nearly a hundred domains suspected to be attacked by #UNC2452 #SolarWinds , including universities, governments and high tech companies such as @Intel and @Cisco. Visit our github project to get the script. link] pic.twitter.com/40VfXuR6JI — RedDrip Team (@RedDrip7) December 16, 2020. .”

Communications

Communications Manufacturing Financial Services Security

Cachet Financial Reeling from MyPayrollHR Fraud

Krebs on Security

OCTOBER 24, 2019

The government alleges Mann was kiting millions of dollars in checks between his accounts at Bank of American and Pioneer from Aug. But on Oct. 23 — less than 24 hours before another weekly payroll rush — Pasadena, Calif. 1, 2019 to Aug.

Communications

Communications Financial Services Insurance Risk

Best Fraud Management Systems & Detection Tools in 2022

eSecurity Planet

SEPTEMBER 16, 2022

Finally, it also is useful for companies looking for a governance, risk, compliance ( GRC ) solution. In its 2021 Threat Force Intelligence Index , IBM reported that manufacturing and financial services were the two industries most at risk for attack, making up 23.2% of attacks IBM handled, respectively. million in losses.

Analytics

Analytics Risk Authentication Financial Services

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

IT Governance

DECEMBER 11, 2023

Source (New) Transport USA Yes 129,611 Tcman Source (New) Manufacturing Spain Yes 108 GB (179 files) Compass Group Italia Source (New) Hospitality Italy Yes 107 GB Pan-American Life Insurance Group, Inc. Incorporated Source (Update) Insurance USA Yes 7,361 Advantis Global, Inc. and Robert W. Baird & Co.

Data Privacy

Data Privacy Energy and Utilities Privacy Manufacturing

What Every CIO Needs to Know About DORA: An IT Operations Perspective

OpenText Information Management

JANUARY 24, 2025

This regulation covers a wide range of aspects related to digital operational resilience, including: ICT risk management: DORA mandates a comprehensive ICT risk management framework encompassing strategies, policies, procedures, and governance structures to ensure continuous risk monitoring and mitigation.

IT

IT Compliance Risk Cloud

NEW TECH: Cequence Security deploys defense against botnets’ assault on business logic

The Last Watchdog

MARCH 26, 2019

Pick any company in any vertical – financial services, government, defense, manufacturing, insurance, healthcare, retailing, travel and hospitality – and you’ll find employees, partners, third-party suppliers and customers all demanding remote access to an expanding menu of apps — using their smartphones and laptops.

Security

Security Digital transformation Financial Services Access

What is Cybersecurity Risk Management?

eSecurity Planet

FEBRUARY 11, 2022

The simplest example may be insurance. Life, health, auto, and other insurance are all designed to help a person protect against losses. Also read : Top Governance, Risk, and Compliance (GRC) Tools for 2022. Once data is mapped, organizations make better decisions on how that data is governed and reduce their risk footprint.

Risk

Risk Cybersecurity Encryption Access

6 best practices for a data governance strategy

Collibra

APRIL 11, 2022

Data governance is a very intricate field, so implementing and sustaining data governance comes with a suite of challenges. Luckily, thousands, if not millions, of organizations use data governance to improve their operations, so you can learn from others’ mistakes and successes. What are data governance best practices?

Government

Government Communications Insurance IT

Top 10 Governance, Risk and Compliance (GRC) Vendors

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. Third-party governance. IT governance and security. Privacy governance and management. Insurance & claims management. Audit management.

Compliance

Compliance Risk Government Retail

Building for operational resilience in the age of AI and hybrid cloud

IBM Big Data Hub

MARCH 20, 2024

Organizations in the financial services, healthcare and other regulated sectors must place an even greater focus on managing risk—not only to meet compliance requirements, but also to maintain customer confidence and trust. Read to learn more about cloud adoption within financial services?

Cloud

Cloud Financial Services Risk Business Services

New York hospitals have new cybersecurity requirements

Data Protection Report

OCTOBER 23, 2024

The regulation includes elements of both the Health Insurance Portability and Accountability Act (HIPAA) and the New York Department of Financial Services (NYDFS) cybersecurity regulation. The regulation also requires that the hospital’s cybersecurity policies address data governance and classification.

Cybersecurity

Cybersecurity Risk Access Financial Services

MY TAKE: Coping with security risks, compliance issues spun up by ‘digital transformation’

The Last Watchdog

AUGUST 22, 2019

On one hand, threat actors have already begun exploiting fresh attack vectors, borne of this rising complexity, and, on the other, government authorities and industry standards bodies are insisting on compliance with increasingly cumbersome data-handling security rules.

Digital transformation

Digital transformation Compliance Risk Security

Regulatory Update: NAIC Fall 2020 National Meeting

Data Matters

DECEMBER 28, 2020

The National Association of Insurance Commissioners (NAIC) held its Fall 2020 National Meeting (Fall Meeting) December 3-9, 2020. NAIC Adopts the Group Capital Calculation Template and Instructions and Related Revisions to the Insurance Holding Company Act. Insurance groups will be exempt from filing a GCC if.

Insurance

Insurance Paper Risk Analytics

U.S. banking regulators order banks to notify cybersecurity incidents in 36 hours

Digital Preservation -- High Stakes for Finance and Insurance Companies

Webinars

Trending Sources

Data Protection in Financial Services Week 2022

Webinars

Top predictions for financial services in 2023

First American Financial Pays Farcical $500K Fine

Iran-linked APT group Pioneer Kitten sells access to hacked networks

The Financial Service and Insurance Industries Need Intelligent Document Processing; Here’s Why

New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance

New York Department of Financial Services Reaches $1 Million Dollar Settlement With First American Title Insurance in Data Breach Investigation

Simplifying Compliance in the Complex U.S. FinServ Regulatory Landscape

MY TAKE: Identity ‘access’ and ‘governance’ tech converge to meet data protection challenges

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024

Data Governance Tools: What Are They? Are They Optional?

NY Department of Financial Services Issues Reminder for Cybersecurity Filing Deadline

NYDFS issues significant guidance on insurers using AI or external data

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Multinational ICICI Bank leaks passports and credit card numbers

U.S. and Foreign Cybersecurity and Intelligence Agencies Recommend Measures to Counteract Threat of Russian Cyberattacks

BEST PRACTICES: Rising complexities of provisioning identities has pushed ‘IGA’ to the fore

NYDFS Imposes Fine of $5 Million on Carnival for Cybersecurity Breaches

New York Regulators Call on Insurers to Strengthen the Cyber Underwriting Process

MyPayrollHR CEO Arrested, Admits to $70M Fraud

Three data-driven trends to watch in financial services in 2022

Four Use Cases Proving the Benefits of Metadata-Driven Automation

From networking to knowledge: The impact of Collibra User Groups

GUEST ESSAY: Massive NPD breach tells us its high time to replace SSNs as an authenticator

Keeping Up with New Data Protection Regulations

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

2024 Cybersecurity Laws & Regulations

Security Compliance & Data Privacy Regulations

Top 6 Best Practices for Data Governance

Researchers shared the lists of victims of SolarWinds hack

Cachet Financial Reeling from MyPayrollHR Fraud

Best Fraud Management Systems & Detection Tools in 2022

The Week in Cyber Security and Data Privacy: 4 – 10 December 2023

What Every CIO Needs to Know About DORA: An IT Operations Perspective

NEW TECH: Cequence Security deploys defense against botnets’ assault on business logic

What is Cybersecurity Risk Management?

6 best practices for a data governance strategy

Top 10 Governance, Risk and Compliance (GRC) Vendors

Building for operational resilience in the age of AI and hybrid cloud

New York hospitals have new cybersecurity requirements

MY TAKE: Coping with security risks, compliance issues spun up by ‘digital transformation’

Regulatory Update: NAIC Fall 2020 National Meeting

Stay Connected