News & Analysis as of

Audits Cybersecurity Risk Management

Gardner Law

Why Compliance Audits Are Non-Negotiable

Gardner Law on

In today’s heightened enforcement environment, compliance auditing isn’t just a best practice—it’s a necessity. Federal and state laws and industry guidance, including the Office of Inspector General (OIG) Compliance Program...more

ArentFox Schiff

Proposed Changes to the HIPAA Security Rule: What Regulated Entities Need to Know

ArentFox Schiff on

In the final days of the Biden Administration, the US Department of Health and Human Services (HHS) Office for Civil Rights (OCR) issued a notice of proposed rulemaking (NPRM) to modify the Security Rule under the Health...more

KPMG Board Leadership Center (BLC)

Directors Quarterly: January 2025

The latest edition of Directors Quarterly features a summary of board and committee agenda priorities for 2025, financial reporting and auditing updates, post-election observations from around the world, and more. Read the...more

Hogan Lovells

Slew of OCR activity underscores agency’s focus on security and AI

Hogan Lovells on

Recent enforcement actions, audit activity, proposed rulemakings, and guidance issued by the U.S. Department of Health and Human Services (“HHS”), Office for Civil Rights (“OCR”) highlight the agency’s focus on health data...more

Foley & Lardner LLP

The Intersection of Agentic AI and Emerging Legal Frameworks

Foley & Lardner LLP on

The evolution of artificial intelligence (AI) has introduced systems capable of making autonomous decisions, known as agentic AI. While generative AI essentially “creates” – providing content such as text, images, etc. –...more

Ropes & Gray LLP

A Flurry of Healthcare Sector Cybersecurity Regulatory Developments in 2024

Ropes & Gray LLP on

2024 was a record year for cyberattacks in the healthcare sector. According to the Breach Portal maintained by the U.S. Department of Health and Human Services (“HHS”) Office of Civil Rights (“OCR”), to date this year, there...more

Baker Donelson

Guardians of the Goldmine: Building an Effective Confidentiality Program

Baker Donelson on

On August 14, Judge Corrigan for the Middle District of Florida, in Properties of the Villages vs. FTC, found that the FTC did not have the authority to enter its planned Noncompete Rule, and entered an order granting an...more

Jackson Lewis P.C.

Nuanced Privacy Laws Means Healthcare Organizations Should Prioritize Protecting Personal Information

Jackson Lewis P.C. on

The healthcare industry is among the most highly regulated industries when it comes to privacy protections. In addition to the federal Health Insurance Portability and Accountability Act (HIPAA), healthcare providers also...more

Dechert LLP

Exploring DORA’s ICT Risk Requirements: Key Issues for Asset Managers

Dechert LLP on

DORA became law in December 2022 but provides for a grace period until 17 January 2025 for organisations to put in place the necessary measures to comply. The new rules will require engagement from both an operational and...more

Mitratech Holdings, Inc

5 Reasons to Invest in Enterprise Risk Management Software

From financial uncertainties to cybersecurity threats, regulatory changes, and everything in between, just how imperative is Enterprise Risk Management (ERM) technology in today’s business environment? According to a...more

Health Care Compliance Association (HCCA)

[Event] Regional Compliance & Ethics Conference - February 22nd - 23rd, Anchorage, AK

Looking for compliance education and networking in your area? SCCE & HCCA’s Regional Compliance & Ethics Conferences bring compliance practitioners from all disciplines together for convenient, local compliance education....more

Society of Corporate Compliance and Ethics...

[Event] Regional Compliance & Ethics Conference - February 22nd - 23rd, Anchorage, AK

Looking for compliance education and networking in your area? SCCE & HCCA’s Regional Compliance & Ethics Conferences bring compliance practitioners from all disciplines together for convenient, local compliance education....more

Constangy, Brooks, Smith & Prophete, LLP

Take these steps to safeguard against third-party cyber threats

The ever-increasing privacy and security risks via third-party vendors and service providers were apparent in 2023 with news of large organizations such as MOVEit, Okta and AT&T being affected. Research has shown that 98...more

Jackson Lewis P.C.

Top 10 for 2024 – Happy Data Privacy Day!

Jackson Lewis P.C. on

To celebrate Data Privacy Day (January 28), we present our top ten data privacy and cybersecurity predictions for 2024. 1. AI regulations to protect data privacy. Automated decision-making tools, smart cameras, wearables,...more

Procopio, Cory, Hargreaves & Savitch LLP

California Advancing Regulations for AI, Other Cybersecurity Issues

California continues to push beyond other states in developing and implementing privacy and cybersecurity regulations. The latest evidence came from the recent release of draft regulations from the California Privacy...more

Snell & Wilmer

Corporate Communicator - 2024 Annual Meeting Season

Snell & Wilmer on

Clawback Rules. As previously discussed in last Winter’s Corporate Communicator, the Securities and Exchange Commission (“SEC") adopted final rules in October 2022 directing the NYSE and Nasdaq to adopt listing standards that...more

Troutman Pepper Locke

FERC Staff Issues Report on Lessons Learned from 2023 CIP Audits

Troutman Pepper Locke on

On December 12, 2023, FERC staff offered information and recommendations to help registered entities (i.e., users, owners, and operators of the bulk electric system) improve their compliance with mandatory Critical...more

Health Care Compliance Association (HCCA)

[Event] 28th Annual Compliance Institute - April 14th - 17th, Nashville, TN

Get ready to be inspired with game-changing insights and industry connections! For over two and a half decades, healthcare compliance professionals have gathered at HCCA’s Compliance Institute (CI) to share ideas, learn...more

NAVEX

Risk Management 101: Navigating the Tightrope of Third-Party Risks

NAVEX on

This article is part three of a series – for more in-depth information about managing risk, check out part one and part two. Let's talk tightropes - Picture this: a daring tightrope walker maneuvers gracefully across a thin...more

Mitratech Holdings, Inc

Local, state, and federal regulation changes that could impact your policy management (and how to keep up with them)

From labor codes and workplace safety regulations to cyber security reporting requirements, see the latest updates that may have an effect on your policy management strategy. In the ever-changing landscape of the modern...more

Akin Gump Strauss Hauer & Feld LLP

SEC Releases Risk Alert on EXAMS Process

Investment Advisers: Assessing Risks, Scoping Examinations, and Requesting Documents* I. Introduction - The SEC-registered investment adviser (“adviser”) population is large and diverse, ranging from global asset managers...more

McDermott Will & Emery

California Reveals Draft Regulations Requiring Onerous Cybersecurity Audits and Privacy Risk Assessments

On August 28, 2023, the California Privacy Protection Agency (CPPA) released discussion drafts of regulations on cybersecurity audits and privacy risk assessments in advance of the CPPA’s meeting on September 8, 2023. ...more

Health Care Compliance Association (HCCA)

[Event] 2024 Managed Care Compliance Conference - January 29th - 30th, Coronado, CA

Explore the unique issues that are pertinent to managed care professionals! This annual event dedicated to compliance management for health plan providers is returning to an in-person format for 2024. Join your peers and...more

Health Care Compliance Association (HCCA)

[Event] 2023 Board & Audit Committee Compliance Conference - October 23rd - 24th, Fort Lauderdale, FL

Discover today's best practices for your role in healthcare compliance oversight - The Office of Inspector General of Health and Human Services expects healthcare board members, board audit/compliance committee members,...more

Morrison & Foerster LLP - Government...

NIST Releases Revised Cybersecurity Controls And Requirements For Protection Of Controlled Unclassified Information Resident In...

On May 10, 2023, the National Institute of Standards and Technology (“NIST”) released an Initial Public Draft of Revision 3 to NIST Special Publication (“SP”) 800-171, Protecting Controlled Unclassified Information in...more

47 Results
 / 
View per page
Page: of 2

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide