Insurance Companies Fined for Data Breaches

December 4, 2024

The state of New York fined two major insurance companies for poor cybersecurity that failed to prevent data breaches. Attorney…

Read More

NIST Releases Quick-Start Guide for Cybersecurity Supply Chain Risk Management

November 6, 2024

NIST released an initial public draft of the Cybersecurity Supply Chain Risk Management: Due Diligence Assessment Quick-Start Guide. People who…

Read More

CMMC Finalized: What You Need to Know

October 25, 2024

In October 2024, the DoD published the final version of the Cybersecurity Maturity Model Certification (CMMC), nearly three full years…

Read More

Defending City Governments Against Ransomware

August 21, 2024

Ransomware is a cybersecurity threat that continues to become more common and increasingly sophisticated. All industries are vulnerable to attacks,…

Read More

Cybersecurity Lessons from the CrowdStrike Outage

July 29, 2024

On July 18th, a bug in a CrowdStrike software update led to a massive IT outage that had global ramifications.…

Read More

FedRAMP JAB Authorization vs Agency Authorization

June 5, 2024

Cloud Service Providers (CSPs) that want to sell their Cloud Service Offerings (CSOs) to federal agencies must secure a Federal…

Read More

NIST Releases Four Draft Publications Focused on AI Security

May 7, 2024

The National Institute of Standards and Technology (NIST) released four draft publications designed to help organizations improve the safety, security,…

Read More

Draft Rules Published for Cyber Incident Reporting Requirements

March 29, 2024

On March 27, the US Cybersecurity and Infrastructure Security Agency (CISA) published draft rules detailing requirements for critical infrastructure companies…

Read More

Safeguards Rule Breach Notification Requirements Updated for Non-Banking Financial Institutions

November 2, 2023

The Federal Trade Commission (FTC) has given the green light to changes to the GLBA Safeguards Rule Breach Notification requirement.…

Read More

Comparing FedRAMP and StateRAMP

September 12, 2023

For Cloud Service Providers (CSP) hoping to win business with federal, state, and local government entities, their product(s) will likely…

Read More

Finding a credible expert with the appropriate background, expertise, and credentials can be difficult. CompliancePoint is here to help.