Blog - incident response

NYDFS Bolsters Cybersecurity Requirements

Effective November 1, 2023, the Part 500 amendment to the NYDFS Cybersecurity Regulation (23 NYCRR 500) is a new set of cybersecurity requirements for all covered financial institutions. The NYDFS bolsters cybersecurity requirements through a series of changes that address both the advancements of the cybersecurity threat landscape as well as increased opportunities for organizations to protect themselves.

Lessons on Children’s Privacy 

LinkedIn’s Chief Privacy Officer, and RadarFirst Board of Directors member, Kalinda Raina, joined us in a recent session of The Privacy Collective, Teachable Moments: Children’s Privacy Policies. In this session, we discussed privacy and compliance alignment to gain lessons from children’s privacy regulation and discuss how organizations can build resilient privacy policies to protect people of all ages.

SEC Amendments Make Cybersecurity Disclosure a Board-level Issue

To better understand what the SEC disclosure rules and the announced amendments mean for organizations, C-suite executives, and Board-level stakeholders, RadarFirst CEO Don India met with privacy, cyber, and risk experts to investigate why the SEC amendments make cybersecurity disclosure a Board-level issue.

The Power of Collaborative Incident Response

It’s easy to denounce silos and promote collaboration, but how does an organization actually go about enabling communication, compliance, and coordinated action across and between departments? Read more from Judy Titera, Independent Director, Consultant (former Chief Privacy Officer at USAA).

How Do You Define Privacy Risk?

As breach costs increase, how does an organization decide where to invest its finite funds? And how do you define privacy risk? There’s one area where the data is clear: incident response. Forming a cross-functional IR team and empowering them with the right tools can have a huge financial impact on breach costs for a relatively small expense.

Privacy is So Money

I was digging through the blog attic the other day and came across this chestnut from 2014. Some of the specific breaches that are discussed now seem quaint in comparison to what’s come since, and some of the promising privacy tech companies have crossed the rainbow bridge – but the fundamental promise of Privacy ROI is stronger than ever.