Compliance

What European security teams are struggling to operationalize

What European security teams are struggling to operationalize 2026-01-07 at 08:32 By Anamarija Pogorelec European security and compliance teams spend a lot of time talking about regulation. A new forecast report from Kiteworks suggests the harder problem sits elsewhere. According to the report, many European organizations have strong regulatory frameworks on paper, driven by GDPR […]

What European security teams are struggling to operationalize Read More »

Passwords are still breaking compliance programs

Passwords are still breaking compliance programs 2026-01-06 at 07:32 By Sinisa Markovic The security stack has grown, but audits still stumble on passwords. CISOs see this every year. An organization may have strong endpoint tools, layered network defenses, and a documented access policy. Then the audit turns to shared credentials, spreadsheet-based password storage, or accounts

Passwords are still breaking compliance programs Read More »

New State Laws Impact AI Governance, Risk, and Compliance

New State Laws Impact AI Governance, Risk, and Compliance 2026-01-05 at 18:48 By Scott Swanson New York has started a movement to reshape the AI compliance landscape for companies doing business in the state. Other states are following suit making Governance and AI Compliance an increasingly critical endeavor. This article is an excerpt from LevelBlue

New State Laws Impact AI Governance, Risk, and Compliance Read More »

Pharma’s most underestimated cyber risk isn’t a breach

Pharma’s most underestimated cyber risk isn’t a breach 2026-01-05 at 08:47 By Mirko Zorz Chirag Shah, Global Information Security Officer & DPO at Model N examines how cyber risk in pharma and life sciences is shifting beyond traditional breaches toward data misuse, AI-driven exposure and regulatory pressure. He explains why executives still underestimate silent control

Pharma’s most underestimated cyber risk isn’t a breach Read More »

Understanding AI insider risk before it becomes a problem

Understanding AI insider risk before it becomes a problem 2026-01-05 at 07:31 By Help Net Security In this Help Net Security video, Greg Pollock, Head of Research and Insights at UpGuard, discusses AI use inside organizations and the risks tied to insiders. He explains two problems. One involves employees who use AI tools to speed

Understanding AI insider risk before it becomes a problem Read More »

What shadow AI means for SaaS security and integrations

What shadow AI means for SaaS security and integrations 2026-01-02 at 08:30 By Help Net Security In this Help Net Security video, Jaime Blasco, CTO at Nudge Security, discusses why shadow AI matters to security teams. He describes how AI adoption happens in two ways, through company led programs and through employees choosing tools on

What shadow AI means for SaaS security and integrations Read More »

Five identity-driven shifts reshaping enterprise security in 2026

Five identity-driven shifts reshaping enterprise security in 2026 2025-12-24 at 11:18 By Help Net Security 2026 marks the tipping point when artificial intelligence begins to fundamentally reshape cyber risk. After several years of widespread adoption, AI moves beyond influencing how we work and starts transforming the enterprise itself. AI is now embedded at every layer

Five identity-driven shifts reshaping enterprise security in 2026 Read More »

Governance maturity defines enterprise AI confidence

Governance maturity defines enterprise AI confidence 2025-12-24 at 08:17 By Anamarija Pogorelec AI security has reached a point where enthusiasm alone no longer carries organizations forward. New Cloud Security Alliance research shows that governance has become the main factor separating teams that feel prepared from those that do not. Governance separates confidence from uncertainty Governance

Governance maturity defines enterprise AI confidence Read More »

Weak enforcement keeps PCI DSS compliance low

Weak enforcement keeps PCI DSS compliance low 2025-12-23 at 09:41 By Sinisa Markovic Payment card breaches continue to surface across industries, even after years of investment in security standards. A new study links this pattern to enforcement, showing that PCI DSS compliance trails behind HIPAA, GDPR, and the EU’s NIS2 Directive. A compliance gap that

Weak enforcement keeps PCI DSS compliance low Read More »

Session tokens give attackers a shortcut around MFA

Session tokens give attackers a shortcut around MFA 2025-12-22 at 07:45 By Help Net Security In this Help Net Security video, Simon Wijckmans, CEO at cside, discusses why session token theft is rising and why security teams miss it. He walks through how web applications rely on browsers to store session tokens after login often

Session tokens give attackers a shortcut around MFA Read More »

Banks built rules for yesterday’s crime and RegTech is trying to fix that

Banks built rules for yesterday’s crime and RegTech is trying to fix that 2025-12-17 at 08:32 By Sinisa Markovic Criminals are moving money across borders faster, and financial institutions are feeling the squeeze. Compliance teams feel this strain every day as they try to keep up with schemes that shift through accounts, intermediaries, and digital

Banks built rules for yesterday’s crime and RegTech is trying to fix that Read More »

The messy data trails of telehealth are becoming a security nightmare

The messy data trails of telehealth are becoming a security nightmare 2025-12-16 at 09:24 By Mirko Zorz In this Help Net Security interview, Scott Bachand, CIO/CISO at Ro, discusses how telehealth reshapes the flow of patient data and what that means for security. He explains why organizations must strengthen data classification and visibility as systems

The messy data trails of telehealth are becoming a security nightmare Read More »

What types of compliance should your password manager support?

What types of compliance should your password manager support? 2025-12-15 at 07:49 By Sinisa Markovic Lost credentials and weak authentication controls still sit at the center of many security incidents. IT leaders and CISOs know this problem well. They also know that regulators watch how organizations protect passwords, track access, and document security decisions. That

What types of compliance should your password manager support? Read More »

What 35 years of privacy law say about the state of data protection

What 35 years of privacy law say about the state of data protection 2025-12-12 at 09:52 By Anamarija Pogorelec Privacy laws have expanded around the world, and security leaders now work within a crowded field of requirements. New research shows that these laws provide stronger rights and duties, but the protections do not always translate

What 35 years of privacy law say about the state of data protection Read More »

Uneven regulatory demands expose gaps in mobile security

Uneven regulatory demands expose gaps in mobile security 2025-12-12 at 07:36 By Anamarija Pogorelec Mobile networks carry a great deal of the world’s digital activity, which makes operators a frequent target for attacks. A study released by the GSMA shows that operators spend between $15 and $19 billion a year on core cybersecurity functions. Spending

Uneven regulatory demands expose gaps in mobile security Read More »

Former Accenture Employee Charged Over Cybersecurity Fraud

Former Accenture Employee Charged Over Cybersecurity Fraud 2025-12-11 at 16:25 By Ionut Arghire Danielle Hillmer allegedly concealed the fact that her employer’s cloud platform did not meet DoD requirements. The post Former Accenture Employee Charged Over Cybersecurity Fraud appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Former Accenture Employee Charged Over Cybersecurity Fraud Read More »

Building SOX compliance through smarter training and stronger password practices

Building SOX compliance through smarter training and stronger password practices 2025-12-10 at 07:00 By Sinisa Markovic A SOX audit can reveal uncomfortable truths about how a company handles access to financial systems. Even organizations that invest in strong infrastructure often discover that everyday password habits weaken the controls they thought were solid. CISOs know that

Building SOX compliance through smarter training and stronger password practices Read More »

AI-driven threats are heading straight for the factory floor

AI-driven threats are heading straight for the factory floor 2025-12-09 at 09:07 By Mirko Zorz In this Help Net Security interview, Natalia Oropeza, Chief Cybersecurity Officer at Siemens, discusses how industrial organizations are adapting to a shift in cyber risk driven by AI. She notes that in-house capability, especially for OT response and recovery, is

AI-driven threats are heading straight for the factory floor Read More »

How to tell if your password manager meets HIPAA expectations

How to tell if your password manager meets HIPAA expectations 2025-12-08 at 08:03 By Sinisa Markovic Most healthcare organizations focus on encryption, network monitoring, and phishing prevention, although one simple source of risk still slips through the cracks. Password management continues to open doors for attackers more often than leaders expect. Weak, reused, or shared

How to tell if your password manager meets HIPAA expectations Read More »

Scroll to Top