Insight Search Search Submit Sort by: Relevance Date Search Sort by RelevanceDate Order AscDesc Whitepaper July 13, 2021 How to implement an effective identity management strategy Identity management doesn’t happen overnight; there’s no “Easy” button to press, or magic snap-of-the-fingers instant fix. In fact, identity management has transformed into something far more complex than password authentication and simple security measures. It’s important to understand that jumping into a new technology instantaneously isn’t necessarily the right first step to ensuring a… Whitepaper May 20, 2021 New Executive Order Aims to Shore Up U.S. Cybersecurity Defenses A Primer for Federal Government Contractors On May 12, 2021, President Joe Biden signed an Executive Order (EO) to improve the United States’ cybersecurity and protect federal networks. Following the SolarWinds breach and, most recently, the Colonial Pipeline ransomware attack, the EO is the most recent action in the Biden administration’s plan to overhaul U.S. cybersecurity… Flash Report July 31, 2023 SEC Cybersecurity Disclosure Enhancements: Efforts to Boost Investor Confidence On 26 July 2023, the U.S. Securities and Exchange Commission (SEC) adopted amendments1 to its rules on cybersecurity risk management, strategy, governance and incident reporting by public companies subject to the reporting requirements of the Securities Exchange Act of 1934. The SEC’s view is that cybersecurity threats and incidents pose an ongoing risk to public companies, investors and market… Video September 3, 2020 Cyber Risk Quantification FAQs Cyber risk quantification (CRQ) uses industry leading and highly vetted probabilistic models to more accurately describe the cyber security and technology-based risks facing an organisation. Tune in to Protiviti's subject matter experts answer 15 frequently asked questions about CRQ. Podcast Transcript January 5, 2021 Transcript - Building an Effective Industrial Control Systems Security Programme In this episode, Kevin Donahue, a senior director with Protiviti speaks with Protiviti's associate director Justin Turner and manager Derek Dunkel-JahanTigh about security for industrial control systems, or operational technology. Whitepaper January 14, 2022 Cookie: dal Garante Privacy nuove linee guida a tutela degli utenti Lo scorso 10 giugno il Garante della Privacy italiano, in accordo con quanto già fatto da altre Autorità Privacy Europee, come ICO in UK, CNIL in Francia e AEPD in Spagna, ha pubblicato le proprie “Linee Guida sui Cookie e altri strumenti di tracciamento”, che costituiscono un aggiornamento del Provvedimento “Individuazione delle modalità semplificate per l’informativa e l’acquisizione del… Whitepaper December 7, 2021 Vigilanza sul mercato NPEs: Quale risposta dei Servicer alla rinnovata attenzione? L’11 novembre 2021 Banca d’Italia ha rilasciato la comunicazione “Servicers in operazioni di cartolarizzazione. Profili di rischiosità e linee di vigilanza” che integra e in alcuni casi specifica il quadro previsionale rinnovato con il recente (quarto) aggiornamento (luglio 2021) delle Disposizioni di vigilanza per gli intermediari finanziari (Circolare n. 288 del 3 aprile 2015, Titolo… Whitepaper October 25, 2021 COMPLIANCE PRIVACY: COME TRASFERIRE I DATI PERSONALI AL DI FUORI DELL'UE Dalle Raccomandazioni del Comitato Europeo per la protezione dei dati alle Clausole Contrattuali Standard della Commissione Europea quali sono le regole e come applicarle Secondo le raccomandazioni emanate il 18 giugno 2021 dall’European Data Protection Board (EDPB), le aziende devono dotarsi di una nuova metodologia per gestire i trasferimenti di dati personali all’estero ed essere in grado di… Whitepaper September 29, 2021 SUPPLY CHAIN SECURITY Come gestire i rischi cyber connessi alle esternalizzazioni di processi e servizi Il Governo ha di recente portato a 223 i soggetti inclusi nel Perimetro di Sicurezza Nazionale Cibernetico con il DPCM n. 81 del 14 aprile 2021, che integra un precedente DPCM (n. 131 del 30 luglio 2020) sugli obblighi per le imprese che nella catena di approvvigionamento utilizzano servizi/beni ICT… Whitepaper June 1, 2022 How can an enterprise use access management to establish a Zero Trust environment? A hybrid RBAC, ABAC and PBAC framework is the best practice approach A strong access management programme is foundational to establishing a Zero Trust environment by using contextual information to continuously validate that users are who they say they are and by restricting user access to necessary resources only. Within the Zero Trust framework, identity governance and risk-based… Load More
