Cybersecurity Legislative Activity: Summer 2023

August 7, 2023

The Summer of 2023 has been a busy stretch regarding cybersecurity legislative activity. Here’s a recap of some of the…

Read More

Increased Scrutiny on the Cybersecurity of Medical Devices

July 7, 2023

Healthcare organizations rely on medical devices to help provide patient care and monitor patient health. Medical devices such as insulin…

Read More
FedRAMP Rev. 5 servers

FedRAMP Rev. 5 Released

June 21, 2023

The Federal Risk and Authorization Management Program (FedRAMP) helps government agencies protect federal information while utilizing the power of cloud…

Read More

An Early Look at CMMC 2.0

May 23, 2023

Update: This article has been updated to reflect the publishing of the CMMC Final Rule (CMMC 2.0). The Cybersecurity Maturity…

Read More

Conducting a GLBA Risk Assessment

May 1, 2023

Under the latest version of the Gramm-Leach-Bliley Act (GBLA) Safeguards Rule, element two is the requirement to conduct a risk…

Read More
GLBA cybersecurity requirements

GLBA Cybersecurity Requirements: What Your Organization Needs to Do

April 25, 2023

On June 9, 2023, new Gramm-Leach-Bliley Act (GLBA) cybersecurity requirements that reflect updates to the Safeguards Rule component of the…

Read More

New Healthcare Cybersecurity Framework Implementation Guide Released

March 22, 2023

The Health Sector Coordinating Council (HSCC) Cybersecurity Working Group and the U.S. Department of Health and Human Services worked together…

Read More

Beyond Compliance: API Security Testing

March 14, 2023

According to an article written by Nordic APIs, an international community of API practitioners and enthusiasts, in 2020, 90% of…

Read More

Penetration Testing: Going Beyond Compliance Requirements 

February 17, 2023

Regulatory and compliance frameworks such as PCI DSS, FedRAMP, NIST, and HITRUST often require organizations to conduct penetration testing to…

Read More

Protecting Your Data When it’s in the Hands of a Third-party

February 6, 2023

Auto-maker Nissan sent out a breach notification letter to approximately 18,000 people, notifying them that personal information had been leaked…

Read More

Finding a credible expert with the appropriate background, expertise, and credentials can be difficult. CompliancePoint is here to help.