A new supplement to the National Institute of Standards and Technology (NIST) 800-171 “Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations” is on the way. The proposed supplement 800-171B adds 35 new requirements that go alongside the 110 controls in 800-171rev2. Supplement B applies to companies that receive controlled unclassified information (CUI) as part […]
Record fines come on the heels of warnings about cyber risk
Record fines come on the heels of warnings from US Intelligence warning of a growing risk to our utility providers. Similar warnings have been issued for law firms, higher education, and small businesses, so this information is relevant to a wide spectrum of organizations who may need to review how they are protecting their data […]
Canada has a new cybersecurity strategy – does it impact you?
Do you do business with companies in Canada? A recent government survey showed that although 94% of Canadian business collect personal data from their customers, they still have a long way to go to in protecting it, with three quarters of the business executives and owners having never reviewed their responsibilities and one third not […]
State of Cybersecurity 2018
Did you know? The General Data Protection Regulation (GDPR) will take affect May 25, 2018. This will affect global organizations that hold or process personal data of any European Union resident. The definition of “personal data” is much more broad than in current US compliance regulations, and penalties for non-compliance are 20 million Euros or […]