Financial Services, Government and Training - Information Management Today

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

Security Affairs

MAY 24, 2023

The US Department of the Treasury’s Office of Foreign Assets Control (OFAC) announced sanctions against four entities and one individual for their role in malicious cyber operations conducted to support the government of North Korea. ” reads the announcement. correspondent or payable-through account sanctions.”

Government

Government Military Financial Services Security

Hundreds of malicious Chrome browser extensions used to spy on you!

Security Affairs

JUNE 20, 2020

Malicious Chrome browser extensions were used in a massive surveillance campaign aimed at users working in the financial services, oil and gas, media and entertainment, healthcare, government organizations, and pharmaceuticals. The tech giant removed over 100 Chrome browser extensions from the official Web Store.

Healthcare

Healthcare Financial Services Security Communications

Avoslocker ransomware gang targets US critical infrastructure

Security Affairs

MARCH 19, 2022

. “AvosLocker is a Ransomware as a Service (RaaS) affiliate-based group that has targeted victims across multiple critical infrastructure sectors in the United States including, but not limited to, the Financial Services, Critical Manufacturing, and Government Facilities sectors. Consider installing and using a VPN.

Ransomware

Ransomware Passwords Encryption Financial Services

Webinars

How to Achieve High-Accuracy Results When Using LLMs

Maximizing Profit and Productivity: The New Era of AI-Powered Accounting

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Data Protection Report

NOVEMBER 8, 2023

On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. The Amendment also includes new governance requirements and responsibilities applicable to the CISO of all covered entities.

Financial Services

Financial Services Cybersecurity Compliance Government

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024

Thales Cloud Protection & Licensing

OCTOBER 24, 2024

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024 madhav Fri, 10/25/2024 - 06:09 The next major deadline for compliance with the updated cybersecurity rules from the New York State Department of Financial Services (NYDFS) is November 1, 2024.

Cybersecurity

Cybersecurity Financial Services Encryption Compliance

Capital Markets, AI, and the need for governance

Collibra

OCTOBER 31, 2023

With every financial services organization focused on making better and faster decisions, data professional and business leaders are eager to better understand how AI can facilitate their strategic goals. Financial services orgs, especially those in capital markets, frequently has been on the forefront of generative AI investment.

Marketing

Marketing Government Financial Services Artificial Intelligence

The Financial Service and Insurance Industries Need Intelligent Document Processing; Here’s Why

Rocket Software

MARCH 14, 2022

Analyst firm IDC recently published a Vendor Spotlight report featuring ASG Mobius Content Services (Mobius) and its applications in the financial service and insurance industries. Solving these challenges requires employee training and prioritization of documents to manage the increasingly high volume.

Financial Services

Financial Services Insurance Digital transformation Paper

Tackling Data Sovereignty with DDR

Security Affairs

JUNE 20, 2023

Data sovereignty also encompasses the rights and regulations governing data storage, processing, and transfer and often intersects with privacy, security, and legal considerations. Understanding Data Sovereignty Data sovereignty has emerged as a critical concern for businesses worldwide in today’s interconnected digital landscape.

Compliance

Compliance Cybersecurity Risk Encryption

BEST PRACTICES: Mock phishing attacks prep employees to avoid being socially engineered

The Last Watchdog

MAY 1, 2019

Related: Why diversity in training is a good thing. He came up with a new approach to testing and training the bank’s employees – and the basis for a new company, LucySecurity. People tend to be very resistant to training,” Bastable told me. How much better? But as soon as you stop, the number quickly goes back up.”

Phishing

Phishing Financial Services Manufacturing Education

UK Government sets out proposals to shake up UK data protection laws

Data Protection Report

SEPTEMBER 28, 2021

On 10 September 2021, the UK Government published its consultation paper on proposals to reform the UK’s data protection regime. On legitimate interests, the Government proposes disapplying the legitimate interest balancing test for certain activities. The deadline for responding to the consultation is 19 November 2021.

Government

Government FOIA GDPR Compliance

What can AI and generative AI do for governments?

IBM Big Data Hub

SEPTEMBER 20, 2023

When implemented in a responsible way—where the technology is fully governed, privacy is protected and decision making is transparent and explainable—AI has the power to usher in a new era of government services. AI’s value is not limited to advances in industry and consumer products alone.

Government

Government Artificial Intelligence Privacy Digital transformation

New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance

Data Matters

FEBRUARY 10, 2021

On February 4, 2021, the New York Department of Financial Services (NYDFS) issued Circular Letter No. Lacewell stated that cybersecurity is the biggest risk for government and private organizations and described how the Framework is based on “extensive dialogue with industry and experts.”. The Framework. 1 See W.B.

Insurance

Insurance Financial Services Cybersecurity Risk

How Long Should I Keep This Business Record For?

AIIM

MARCH 3, 2020

Too often I hear one of two, equally bad answers: Keep Records for Seven years: This seems to be the de facto answer, especially for financial services records. Internal Revenue Service rules around when they can audit individual and corporate tax returns. As near as I can tell, this comes from the U.S. And they will!

Records Management

Records Management Financial Services Big data Analytics

Russia-Ukraine cyber conflict poses critical infrastructure at risk

Security Affairs

MARCH 14, 2022

Ongoing attacks could cause severe damages to multiple sectors, including transportation, communication, financial services, government facilities, nuclear reactors, and critical manufacturing. ” reported researchers from Cyble. We continue to help Ukrainians in their fight against Russian occupation forces.

Risk

Risk Financial Services Manufacturing Communications

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services

Financial Services Cybersecurity Insurance Risk

NYDFS Amends Cybersecurity Rules for Financial Services Companies

Hunton Privacy

NOVEMBER 23, 2022

On November 9, 2022, the New York Department of Financial Services (NYDFS) released its second, proposed amendments to the Part 500 Cybersecurity Rule. Cybersecurity Governance. The proposed amendments revise several aspects of the draft Cybersecurity Rule amendments released on July 29, 2022.

Financial Services

Financial Services Cybersecurity Ransomware Risk

The Relevance of Privacy-Preserving Techniques and Generative AI to DORA Legislation

Thales Cloud Protection & Licensing

OCTOBER 28, 2024

It aims to ensure that financial institutions, ranging from banks to payment processors, can manage and mitigate risks associated with information and communication technology. Key areas covered by DORA include incident reporting, regular ICT risk assessments, third-party risk management, and maintaining robust governance frameworks.

Privacy

Privacy Encryption Compliance Risk

Finance sector must simplify staff awareness training

IT Governance

APRIL 11, 2019

Financial services firms must do more to educate employees about cyber security, according to the FCA (Financial Conduct Authority). Organisations need to make staff awareness training a board-level priority. Staff awareness training is a crucial part of this.

Retail

Retail Risk Education Financial Services

NYDFS Imposes Fine of $5 Million on Carnival for Cybersecurity Breaches

Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp.

Cybersecurity

Cybersecurity Insurance Phishing Financial Services

Automated governance and trustworthy AI

IBM Big Data Hub

JUNE 7, 2022

Governments and regulatory bodies around the world are working to establish safety standards. The proposed rules aim to govern automated valuation models to protect borrowers. The announcement highlighted the crucial role of training data, and the terrible consequences of using data that “fails to represent American society.”.

Government

Government Financial Services Compliance Cloud

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

See the Top Governance, Risk and Compliance (GRC) Tools. Other industry standards too can have the force of “pseudo-law” – notably, the NIST Cybersecurity Framework, which federal regulators often apply to financial-services firms and government contractors. See the Best Cybersecurity Awareness Training for Employees.

Data Privacy

Data Privacy Compliance Privacy Security

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk

Risk Financial Services Insurance Data breaches

Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors and CISOs

Hunton Privacy

AUGUST 15, 2022

On July 29, 2022, the New York Department of Financial Services (“NYDFS”) posted proposed amendments (“Proposed Amendments”) to its Cybersecurity Requirements for Financial Services Companies (“Cybersecurity Regulations”). As part of the “training and monitoring” requirements under Section 500.14

Financial Services

Financial Services Cybersecurity Risk Passwords

2024 Cybersecurity Laws & Regulations

eSecurity Planet

SEPTEMBER 21, 2024

The landscape of cybersecurity laws and regulations today is set to undergo significant changes, impacting businesses, government entities, and individuals alike. Understanding and adhering to cybersecurity regulations is crucial for any organization as cyber threats evolve and become more sophisticated.

Cybersecurity

Cybersecurity Computer and Electronics Compliance Privacy

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

Data Protection Report

DECEMBER 23, 2019

Likewise, the New York State Department for Financial Services regulations requires relevant entities to have appropriate record retention policies and procedures. A policy or standard needs to be set, which is then explained by training and is measured. How do you build an effective information governance program?

Privacy

Privacy Compliance Personal data Risk

Top 6 Best Practices for Data Governance

Collibra

MARCH 11, 2021

Data governance is a very intricate field, so implementing and sustaining data governance comes with a suite of challenges. Luckily, thousands, if not millions, of organizations use data governance to improve their operations, so you can learn from others’ mistakes and successes. Focus on the operating model.

Government

Government Communications Insurance Customer Experience

From principles to actions: building a holistic approach to AI governance

IBM Big Data Hub

SEPTEMBER 27, 2022

Whether it be financial services, employee hiring, customer service management or healthcare administration, AI is increasingly powering critical workflows across all industries. AI governance: From principles to actions. Sometimes an organization’s need is more tied to organizational AI governance.

Government

Government Compliance Data science Financial Services

#ModernDataMasters: Nicola Askham, The Data Governance Coach

Reltio

SEPTEMBER 24, 2019

Nicola Askham is the leading data governance training provider in the UK with over 16 years of experience and research in the field. She delivers training and consulting to major organisations to help them implement full data governance frameworks. ” However, I got into data governance totally by accident.

Government

Government Digital transformation Big data IT

Best Fraud Management Systems & Detection Tools in 2022

eSecurity Planet

SEPTEMBER 16, 2022

Finally, it also is useful for companies looking for a governance, risk, compliance ( GRC ) solution. In its 2021 Threat Force Intelligence Index , IBM reported that manufacturing and financial services were the two industries most at risk for attack, making up 23.2% of attacks IBM handled, respectively. million in losses.

Analytics

Analytics Risk Authentication Financial Services

What is Cybersecurity Risk Management?

eSecurity Planet

FEBRUARY 11, 2022

Rather than doors, locks and vaults, IT departments rely on a combination of strategies, technologies, and user awareness training to protect an enterprise against cybersecurity attacks that can compromise systems, steal data and other valuable company information, and damage an enterprise’s reputation. What is Cybersecurity Risk Management?

Risk

Risk Cybersecurity Encryption Access

AI Governance: Why our tested framework is essential in an AI world

Collibra

AUGUST 14, 2023

As we speed into a new AI era, there’s a critical element that’s often missing when organizations rush forward in hyper-competitive markets to build scalable, trusted AI programs — and that’s AI governance. An AI governance framework offers a blueprint for how to create successful AI products.

Government

Government Risk Financial Services Compliance

$8 million penalty to NYDFS – and another case of over-retention

Data Protection Report

JANUARY 18, 2024

On January 3, 2024, the New York Department of Financial Services announced a consent order with GGT, where GGT agreed to pay NYDFS $8 million and to surrender its BitLicense (for cryptocurrency trading), due to alleged violations of NYDFS’ cybersecurity and its virtual currency regulations.

Cybersecurity

Cybersecurity Financial Services Compliance Encryption

The aftermath of an incident – business considerations surrounding record-keeping

Data Protection Report

AUGUST 2, 2022

Organizations should also be aware of sector-specific statutory obligations which may apply to them, for example in health or financial services industries. For a purchaser, records of privacy incidents provide valuable information about the vendor’s privacy governance structure. Risk management and mitigation.

Privacy

Privacy Compliance Risk Financial Services

6 best practices for a data governance strategy

Collibra

APRIL 11, 2022

Data governance is a very intricate field, so implementing and sustaining data governance comes with a suite of challenges. Luckily, thousands, if not millions, of organizations use data governance to improve their operations, so you can learn from others’ mistakes and successes. What are data governance best practices?

Government

Government Communications Insurance IT

Catches of the Month: Phishing Scams for October 2023

IT Governance

OCTOBER 13, 2023

EvilProxy phishing campaign targets Microsoft 365 accounts via indeed.com A phishing campaign identified by Menlo Security has been targeting senior executives in various industries – most notably banking and financial services, property management and real estate, and manufacturing – since July.

Phishing

Phishing Financial Services Manufacturing Personal data

What is a Cyberattack? Types and Defenses

eSecurity Planet

JUNE 16, 2022

These new attacks affect everything from private citizens and businesses to government systems; healthcare organizations; public services; and food, water, and fuel supply chains. Capital markets, insurance, financial services, and banking are now online. Cybersecurity training and awareness. Other methods.

Ransomware

Ransomware Cybersecurity Phishing Encryption

New York hospitals have new cybersecurity requirements

Data Protection Report

OCTOBER 23, 2024

The regulation includes elements of both the Health Insurance Portability and Accountability Act (HIPAA) and the New York Department of Financial Services (NYDFS) cybersecurity regulation. The regulation also requires that the hospital’s cybersecurity policies address data governance and classification.

Cybersecurity

Cybersecurity Risk Access Financial Services

Top 10 Governance, Risk and Compliance (GRC) Vendors

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. Third-party governance. IT governance and security. Financial reporting compliance. Privacy governance and management. Audit management.

Compliance

Compliance Risk Government Retail

Top 12 Cloud Security Best Practices for 2021

eSecurity Planet

SEPTEMBER 10, 2021

Train your staff. To prevent hackers from getting their hands on access credentials for cloud computing tools, organizations should train all workers on how to spot cybersecurity threats and how to respond to them. Perhaps most importantly, cloud security training should help employees understand the inherent risk of shadow IT.

Cloud

Cloud Security Encryption Risk

IBM Connected Trade Platform helps power the digitization of trade and supply chain financing

IBM Big Data Hub

SEPTEMBER 18, 2023

Supplier visibility and traceability is growing in importance to help achieve environmental, social and governance (ESG) targets. Clients leveraging IBM Cloud for Financial Services through IBM’s Connected Trade Platform can take advantage of technical expertise to enable cloud deployment as they address their compliance requirements.

Financial Services

Financial Services Cloud Compliance Artificial Intelligence

The Importance of EA/BP for Mergers and Acquisitions

erwin

JUNE 21, 2019

Knowledge retention and training has become a pivotal area in which businesses will either succeed or fail. Industry and government regulations affect businesses that work in or do business with any number of industries or in specific geographies. Different organizations tend to speak different languages. Ensuring Compliance.

Healthcare

Healthcare Compliance Financial Services GDPR

Risk Management under the DORA Regulation

IT Governance

NOVEMBER 23, 2023

Perhaps even more concerning to EU lawmakers is how dependent society at large is on banking and other financial services. In turn, financial institutions heavily depend on ICT to be able to provide those services to begin with. That really shouldn’t surprise us – these are lucrative targets for cyber criminals.

Risk

Risk Data breaches Authentication Financial Services

Black Friday and Cyber Weekend: Navigating the Tumultuous Waters of Retail Cybersecurity

Thales Cloud Protection & Licensing

NOVEMBER 20, 2023

The IBM 2023 Cost of a Data Breach Report , for example, highlights the continuous financial burden on retailers, which, coupled with potential reputational damage, emphasizes the dire need for retailers to prioritize and bolster their cybersecurity measures. Governments: Look to global benchmarks.

Retail

Retail Cybersecurity Financial Services Encryption

The compliance challenges of hybrid working

IT Governance

AUGUST 26, 2021

For example, financial services firms may be worried about employees breaching insider trading laws. However, to meet your compliance requirements, you need to conduct regular staff awareness training to help employees respond appropriately.

Compliance

Compliance Data breaches Privacy Risk

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

Hundreds of malicious Chrome browser extensions used to spy on you!

Webinars

Trending Sources

Avoslocker ransomware gang targets US critical infrastructure

Webinars

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024

Capital Markets, AI, and the need for governance

The Financial Service and Insurance Industries Need Intelligent Document Processing; Here’s Why

Tackling Data Sovereignty with DDR

BEST PRACTICES: Mock phishing attacks prep employees to avoid being socially engineered

UK Government sets out proposals to shake up UK data protection laws

What can AI and generative AI do for governments?

New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance

How Long Should I Keep This Business Record For?

Russia-Ukraine cyber conflict poses critical infrastructure at risk

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

NYDFS Amends Cybersecurity Rules for Financial Services Companies

The Relevance of Privacy-Preserving Techniques and Generative AI to DORA Legislation

Finance sector must simplify staff awareness training

NYDFS Imposes Fine of $5 Million on Carnival for Cybersecurity Breaches

Automated governance and trustworthy AI

Security Compliance & Data Privacy Regulations

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors and CISOs

2024 Cybersecurity Laws & Regulations

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

Top 6 Best Practices for Data Governance

From principles to actions: building a holistic approach to AI governance

#ModernDataMasters: Nicola Askham, The Data Governance Coach

Best Fraud Management Systems & Detection Tools in 2022

What is Cybersecurity Risk Management?

AI Governance: Why our tested framework is essential in an AI world

$8 million penalty to NYDFS – and another case of over-retention

The aftermath of an incident – business considerations surrounding record-keeping

6 best practices for a data governance strategy

Catches of the Month: Phishing Scams for October 2023

What is a Cyberattack? Types and Defenses

New York hospitals have new cybersecurity requirements

Top 10 Governance, Risk and Compliance (GRC) Vendors

Top 12 Cloud Security Best Practices for 2021

IBM Connected Trade Platform helps power the digitization of trade and supply chain financing

The Importance of EA/BP for Mergers and Acquisitions

Risk Management under the DORA Regulation

Black Friday and Cyber Weekend: Navigating the Tumultuous Waters of Retail Cybersecurity

The compliance challenges of hybrid working

Stay Connected