News & Analysis as of

Cybersecurity Compliance New Guidance

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +
Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now.   less -
McCarter & English Blog: Government Contracts...

The “Prestige”: DoD Unveils NIST SP 800-171 Revision 3, Organizationally Defined Parameters

McCarter & English Blog: Government Contracts... on

On April 15, 2025, the Department of Defense (DoD) released official guidance on Organizationally Defined Parameters (ODPs) appearing in the newly published NIST SP 800-171 Revision 3. At the same time, the DoD reaffirmed...more

Sheppard Mullin Richter & Hampton LLP

FedRAMP Releases New Draft Authorization Boundary Guidance

Sheppard Mullin Richter & Hampton LLP on

Over the last few years, the Federal Risk and Authorization Management Program (“FedRAMP”) Program Management Office (“PMO”) has released two draft guidance documents related to defining the applicable boundary for security...more

Goodwin

NYDFS Publishes Guidance on AI-Related Cybersecurity Risks

Goodwin on

On October 16, 2024, the New York State Department of Financial Services (NYDFS or the “Department”) published an industry letter (the “Guidance”) regarding the increased reliance on artificial intelligence (AI) and the...more

Holland & Hart LLP

OCR Provides Guidance to the Healthcare Industry to Combat Ransomware Attacks

Holland & Hart LLP on

In the spirit of National Cybersecurity Awareness Month, the Office of Civil Rights (“OCR”) released a new video on October 17, 2024, to promote awareness on ransomware trends in the healthcare industry and how HIPAA subject...more

Holland & Hart - The Benefits Dial

Both Sides Now… Must Be Alert to Cybersecurity

Holland & Hart - The Benefits Dial on

by Becky Achten New guidance from the Employee Benefits Security Administration (EBSA) affirms that both sides—retirement plans and welfare plans—must take steps to secure participant data from cybercrime. In 2021 the...more

Barnea Jaffa Lande & Co.

Israeli Capital Market, Insurance and Savings Authority Issues New and Revised Circulars

Barnea Jaffa Lande & Co. on

The emerging risks in the financial services market and the inception of the Regulation of Payment Services and Payment Initiation Law prompted the Capital Market, Insurance and Savings Authority (CMISA) to amend a series of...more

BakerHostetler

Key Export Control Developments During the First Quarter of 2024

BakerHostetler on

The first quarter of 2024 saw numerous developments on the export control front. This report summarizes the key developments and provides links to the relevant Federal Register notices and/or agency announcements....more

Health Care Compliance Association (HCCA)

[Event] Regional Compliance & Ethics Conference - February 22nd - 23rd, Anchorage, AK

Health Care Compliance Association (HCCA) on

Looking for compliance education and networking in your area? SCCE & HCCA’s Regional Compliance & Ethics Conferences bring compliance practitioners from all disciplines together for convenient, local compliance education....more

Society of Corporate Compliance and Ethics...

[Event] Regional Compliance & Ethics Conference - February 22nd - 23rd, Anchorage, AK

Society of Corporate Compliance and Ethics... on

Looking for compliance education and networking in your area? SCCE & HCCA’s Regional Compliance & Ethics Conferences bring compliance practitioners from all disciplines together for convenient, local compliance education....more

Society of Corporate Compliance and Ethics...

[Event] Regional Compliance & Ethics Conference - March 8th, Washington, DC

Society of Corporate Compliance and Ethics... on

Looking for compliance education and networking in your area? SCCE & HCCA’s Regional Compliance & Ethics Conferences bring compliance practitioners from all disciplines together for convenient, local compliance education....more

Health Care Compliance Association (HCCA)

[Event] Regional Compliance & Ethics Conference - March 8th, Washington, DC

Health Care Compliance Association (HCCA) on

Looking for compliance education and networking in your area? SCCE & HCCA’s Regional Compliance & Ethics Conferences bring compliance practitioners from all disciplines together for convenient, local compliance education....more

Ankura

U.S. DOJ’s New Safe Harbor Policy: Conducting Enhanced M&A Due Diligence

Ankura on

Last month, U.S. Deputy Attorney General Lisa O. Monaco announced a new Safe Harbor Policy for voluntary self-disclosure (the “Policy”) made in connection with merger and acquisition activity. The Policy is intended to bring...more

BakerHostetler

OCR’s October Initiatives: Strengthening Telehealth Security and HIPAA Compliance

BakerHostetler on

October has been a busy month for the OCR, which is tasked with enforcing the regulations issued under HIPAA. In the past week, the OCR released two new guidance documents aimed at reducing the privacy and security risks...more

Benesch

As China Cross-Border Data Transfer Security Assessment Requirement Comes Into Effect, New Guidelines Posted for Security...

Benesch on

The new guidelines provide insight into how businesses can submit applications to the CAC in order to obtain approval via the CAC security assessment cross-border data transfer requirement. As of September 2022, all...more

Foley & Lardner LLP

401(k) Compliance Check #7: Five Administrative Policies Every 401(k) Plan Needs

Foley & Lardner LLP on

To help employers properly administer their 401(k) plans, in 2022, Foley & Lardner LLP is authoring a series of monthly “401(k) Compliance Check” newsletters. This article discusses some of the policies that are important for...more

Akin Gump Strauss Hauer & Feld LLP

Treasury to Companies: Time to Take Ransomware Reporting Seriously

Akin Gump Strauss Hauer & Feld LLP on

On September 21, 2021, the U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) published an updated sanctions advisory, providing guidance to companies on sanctions compliance obligations related to ransomware...more

Sheppard Mullin Richter & Hampton LLP

Do You Have a Risk-Based Sanctions Compliance Program?: In the Event of a Ransomware Attack, OFAC Wants to Know

Sheppard Mullin Richter & Hampton LLP on

In the wake of increased ransomware attacks over the course of the last several months, the US Department of Treasury’s Office of Foreign Assets Control (OFAC) has updated a guidance it released last year on potential...more

BCLP

Supervision of Vendors When Outsourcing - The Buck Stops with FINRA Member Firms

BCLP on

Key Takeaways: ..On August 13, 2021, FINRA issued Regulatory Notice 21-29 (“RN 21-29”) to remind member firms that they must establish and maintain an adequate supervisory system, including written supervisory procedures...more

Fox Rothschild LLP

FINRA’s New Guidance Report… The Name Did Not Change To Protect The Innocent

Fox Rothschild LLP on

In what has become a yearly occurrence, FINRA has notified its member firms about its intent regarding the member firms’ compliance programs. See...more

White & Case LLP

US Treasury Advises on Potential Sanctions Risks Raised by Ransomware Attacks

White & Case LLP on

On October 1, 2020, the US Department of the Treasury's Office of Foreign Assets Control ("OFAC") issued an advisory opinion on the sanctions risks associated with certain cyberattacks ("OFAC Guidance"). The OFAC Guidance...more

Society of Corporate Compliance and Ethics...

Department of Defense Cyber Exchange creates telecommuting guidance portal

Society of Corporate Compliance and Ethics... on

Report on Supply Chain Compliance 3, no. 9 (April 30, 2020) - The U.S. Department of Defense (DoD) created a list of best practices, guidance, and tools for maintaining cybersecurity while telecommuting...more

21 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide