Insight Search Search Submit Sort by: Relevance Date Search Sort by RelevanceDate Order AscDesc Insights paper October 8, 2024 Best Practices for Building a Sustainable PCI DSS Compliance Programme Creating and maintaining a sustainable PCI DSS compliance programme is a crucial and complex task for organisations to protect payment card transactions and uphold consumer trust. However, despite the PCI DSS standard being around for almost 20 years, many organisations still struggle to achieve and validate compliance with it.In April 2016, the PCI Security Standards Council (SSC) introduced the… Whitepaper March 21, 2023 Mitigating crypto sanctions evasion risk in financial institutions The Financial Action Task Force (FATF) has long warned that criminals leverage virtual assets not only for predicate or money-laundering offenses but also to evade financial sanctions and raise funds to support terrorism. Even so, the number of recent headlines about criminal activity and sanctions evasion in the crypto industry is alarming. Cryptocurrency-based crime hit an all-time high of $20.… In Focus October 17, 2024 The DoD unveils the Cybersecurity Maturity Model Certification Programme: A primer for defense contractors As cybersecurity threats evolve, the U.S. Department of Defense (DoD) has introduced a long-awaited pivotal framework aimed at bolstering the security of its national defense supply chain: The Cybersecurity Maturity Model Certification (CMMC) Programme. The new rule, published Oct. 15, marks a significant step towards enhancing cybersecurity across the Defense Industrial Base (DIB). Whitepaper May 28, 2024 DORA Compliance: Untangling Key Hurdles to Implementation The Digital Operational Resilience Act (DORA), or more formally known as Regulation (EU) 2022/2554, took effect on 16 January 2023, with final industry compliance required by 17 January 2025. The regulation underscores the importance of digital operational resilience in today’s increasingly interconnected and digitized landscape and seeks to expand the reach of European regulators incorporating… Whitepaper January 14, 2022 Cookie: dal Garante Privacy nuove linee guida a tutela degli utenti Lo scorso 10 giugno il Garante della Privacy italiano, in accordo con quanto già fatto da altre Autorità Privacy Europee, come ICO in UK, CNIL in Francia e AEPD in Spagna, ha pubblicato le proprie “Linee Guida sui Cookie e altri strumenti di tracciamento”, che costituiscono un aggiornamento del Provvedimento “Individuazione delle modalità semplificate per l’informativa e l’acquisizione del… Whitepaper December 7, 2021 Vigilanza sul mercato NPEs: Quale risposta dei Servicer alla rinnovata attenzione? L’11 novembre 2021 Banca d’Italia ha rilasciato la comunicazione “Servicers in operazioni di cartolarizzazione. Profili di rischiosità e linee di vigilanza” che integra e in alcuni casi specifica il quadro previsionale rinnovato con il recente (quarto) aggiornamento (luglio 2021) delle Disposizioni di vigilanza per gli intermediari finanziari (Circolare n. 288 del 3 aprile 2015, Titolo… Whitepaper October 25, 2021 COMPLIANCE PRIVACY: COME TRASFERIRE I DATI PERSONALI AL DI FUORI DELL'UE Dalle Raccomandazioni del Comitato Europeo per la protezione dei dati alle Clausole Contrattuali Standard della Commissione Europea quali sono le regole e come applicarle Secondo le raccomandazioni emanate il 18 giugno 2021 dall’European Data Protection Board (EDPB), le aziende devono dotarsi di una nuova metodologia per gestire i trasferimenti di dati personali all’estero ed essere in grado di… Whitepaper September 29, 2021 SUPPLY CHAIN SECURITY Come gestire i rischi cyber connessi alle esternalizzazioni di processi e servizi Il Governo ha di recente portato a 223 i soggetti inclusi nel Perimetro di Sicurezza Nazionale Cibernetico con il DPCM n. 81 del 14 aprile 2021, che integra un precedente DPCM (n. 131 del 30 luglio 2020) sugli obblighi per le imprese che nella catena di approvvigionamento utilizzano servizi/beni ICT… Video September 3, 2020 Cyber Risk Quantification FAQs Cyber risk quantification (CRQ) uses industry leading and highly vetted probabilistic models to more accurately describe the cyber security and technology-based risks facing an organisation. Tune in to Protiviti's subject matter experts answer 15 frequently asked questions about CRQ. Whitepaper May 20, 2021 New Executive Order Aims to Shore Up U.S. Cybersecurity Defenses A Primer for Federal Government Contractors On May 12, 2021, President Joe Biden signed an Executive Order (EO) to improve the United States’ cybersecurity and protect federal networks. Following the SolarWinds breach and, most recently, the Colonial Pipeline ransomware attack, the EO is the most recent action in the Biden administration’s plan to overhaul U.S. cybersecurity… Load More
