Compliance

CMMC Live: Pentagon Demands Verified Cybersecurity From Contractors

CMMC, Compliance, defense contractor, DIB, DoD, Government, Government Policy /

CMMC Live: Pentagon Demands Verified Cybersecurity From Contractors 2025-11-11 at 16:59 By Eduard Kovacs Enforcement of the Department of Defense’s Cybersecurity Maturity Model Certification (CMMC) requirements started on November 10, 2025. The post CMMC Live: Pentagon Demands Verified Cybersecurity From Contractors appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

CMMC Live: Pentagon Demands Verified Cybersecurity From Contractors Read More »

Metrics don’t lie, but they can be misleading when they only tell IT’s side of the story

automation, CIO, CISO, cloud security, Compliance, cybersecurity, Don't miss, Features, Hot stuff, Interval Group, News, orchestration, strategy /

Metrics don’t lie, but they can be misleading when they only tell IT’s side of the story 2025-11-07 at 13:28 By Mirko Zorz In this Help Net Security interview, Rik Mistry, Managing Partner at Interval Group, discusses how to align IT strategy with business goals. He explains how security, governance, and orchestration shape IT operations

Metrics don’t lie, but they can be misleading when they only tell IT’s side of the story Read More »

AI can flag the risk, but only humans can close the loop

Artificial Intelligence, Compliance, cybersecurity, digital forensics, Don't miss, Endpoint Security, EY, Features, machine learning, monitoring, News, third party compromise /

AI can flag the risk, but only humans can close the loop 2025-11-05 at 09:07 By Mirko Zorz In this Help Net Security interview, Dilek Çilingir, Global Forensic & Integrity Services Leader at EY, discusses how AI is transforming third-party assessments and due diligence. She explains how machine learning and behavioral analytics help organizations detect

AI can flag the risk, but only humans can close the loop Read More »

Managing legacy medical devices that can no longer be patched

Artificial Intelligence, Compliance, cyber resilience, cybersecurity, Don't miss, Features, healthcare, Hot stuff, medical devices, News, QuidelOrtho, risk, security controls /

Managing legacy medical devices that can no longer be patched 2025-10-28 at 10:22 By Mirko Zorz In this Help Net Security interview, Patty Ryan, Senior Director and CISO at QuidelOrtho, discusses how the long lifecycles of medical devices impact cybersecurity in healthcare environments. She explains how organizations can protect legacy systems, collaborate with vendors, and

Managing legacy medical devices that can no longer be patched Read More »

NSO Ordered to Stop Hacking WhatsApp, but Damages Cut to $4 Million

Compliance, lawsuit, nso group, WhatsApp /

NSO Ordered to Stop Hacking WhatsApp, but Damages Cut to $4 Million 2025-10-20 at 12:42 By Eduard Kovacs The judge ruled that punitive damages of $167 million awarded by a jury were excessive. The post NSO Ordered to Stop Hacking WhatsApp, but Damages Cut to $4 Million appeared first on SecurityWeek. This article is an

NSO Ordered to Stop Hacking WhatsApp, but Damages Cut to $4 Million Read More »

Inside healthcare’s quiet cybersecurity breakdown

Compliance, cyberattacks, cybersecurity, healthcare, News, OMEGA Systems, report, risk /

Inside healthcare’s quiet cybersecurity breakdown 2025-10-17 at 08:52 By Anamarija Pogorelec Hospitals, clinics, and care networks continue to treat cybersecurity as a back-office issue, according to the 2025 Healthcare IT Landscape Report from Omega Systems. Security takes a back seat Healthcare IT leaders are juggling competing demands. Rising costs, new privacy regulations, and expanding digital

Inside healthcare’s quiet cybersecurity breakdown Read More »

What Chat Control means for your privacy

Compliance, Don't miss, Europe, Features, Government, Hot stuff, News, Privacy, regulation, scanning, surveillance, Wire /

What Chat Control means for your privacy 2025-10-14 at 08:00 By Mirko Zorz The EU’s proposed Chat Control (CSAM Regulation) aims to combat child sexual abuse material by requiring digital platforms to detect, report, and remove illegal content, including grooming behaviors. Cybersecurity experts warn that such measures could undermine encryption, create new attack surfaces, and

What Chat Control means for your privacy Read More »

Oneleet Raises $33 Million for Security Compliance Platform

Compliance, Cybersecurity Funding, funding, Oneleet /

Oneleet Raises $33 Million for Security Compliance Platform 2025-10-03 at 15:55 By Ionut Arghire The cybersecurity startup will expand its engineering team, add more AI capabilities, and invest in go-to-market efforts. The post Oneleet Raises $33 Million for Security Compliance Platform appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Oneleet Raises $33 Million for Security Compliance Platform Read More »

Zania Raises $18 Million for AI-Powered GRC Platform

Compliance, Cybersecurity Funding, funding, governance, GRC, Risk Management, Zania /

Zania Raises $18 Million for AI-Powered GRC Platform 2025-10-02 at 12:54 By Ionut Arghire The company plans to triple its engineering and go‑to‑market teams and to accelerate its agentic AI platform. The post Zania Raises $18 Million for AI-Powered GRC Platform appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Zania Raises $18 Million for AI-Powered GRC Platform Read More »

Building a mature automotive cybersecurity program beyond checklists

agentic AI, Agero, automotive security, Compliance, cybersecurity, Don't miss, Features, Hot stuff, News, security controls, security metrics, strategy /

Building a mature automotive cybersecurity program beyond checklists 2025-10-02 at 09:41 By Mirko Zorz In this Help Net Security interview, Robert Sullivan, CIO & CISO at Agero, shares his perspective on automotive cybersecurity. He discusses strategies for developing mature security programs, meeting regulatory requirements, and addressing supply chain risks. Sullivan also looks ahead to how

Building a mature automotive cybersecurity program beyond checklists Read More »

Mycroft Raises $3.5 Million for AI-Powered Security and Compliance Platform

AI, Artificial Intelligence, Compliance, Cybersecurity Funding, funding, Mycroft /

Mycroft Raises $3.5 Million for AI-Powered Security and Compliance Platform 2025-09-22 at 16:11 By Eduard Kovacs The Canada-based company has emerged from stealth with autonomous AI agents designed to manage and operate the security and IT stack. The post Mycroft Raises $3.5 Million for AI-Powered Security and Compliance Platform appeared first on SecurityWeek. This article

Mycroft Raises $3.5 Million for AI-Powered Security and Compliance Platform Read More »

How Juventus protects fans, revenue, and reputation during matchdays

CISO, Compliance, cyber risk, cybersecurity, Don't miss, Features, Hot stuff, News, resilience, Risk Management, security awareness, software development, strategy /

How Juventus protects fans, revenue, and reputation during matchdays 2025-09-22 at 10:29 By Mirko Zorz In this Help Net Security interview, Mirko Rinaldini, Head of ICT at Juventus Football Club, discusses the club’s approach to cyber risk strategy. Juventus has developed a threat-led, outcomes-driven program that balances innovation with protections across matchdays, e-commerce, and digital

How Juventus protects fans, revenue, and reputation during matchdays Read More »

The real-world effects of EU’s DORA regulation on global businesses

Compliance, EU, Europe, News, regulation, Risk Management, Vanta, Video /

The real-world effects of EU’s DORA regulation on global businesses 2025-09-19 at 08:31 By Help Net Security In this Help Net Security video, Matt Cooper, Director of Governance, Risk, and Compliance at Vanta, discusses the EU’s Digital Operational Resilience Act (DORA) and its effects six months after it went into effect. DORA is the first

The real-world effects of EU’s DORA regulation on global businesses Read More »

Shadow AI is breaking corporate security from within

Artificial Intelligence, Compliance, cybersecurity, IO, News, report, supply chain attacks, third party compromise /

Shadow AI is breaking corporate security from within 2025-09-18 at 08:26 By Anamarija Pogorelec Cybersecurity leaders know the attack surface has been growing for years, but the latest State of Information Security Report 2025 from IO shows how fast new risks are converging. Drawing on responses from more than 3,000 security professionals in the UK

Shadow AI is breaking corporate security from within Read More »

RegScale Raises $30 Million for GRC Platform

Compliance, Cybersecurity Funding, funding, GRC, RegScale, Risk Management /

RegScale Raises $30 Million for GRC Platform 2025-09-17 at 16:39 By Eduard Kovacs RegScale has raised a total of more than $50 million, with the latest investment being used to enhance its platform and expand. The post RegScale Raises $30 Million for GRC Platform appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

RegScale Raises $30 Million for GRC Platform Read More »

Creating a compliance strategy that works across borders

Compliance, cybersecurity, data security, Don't miss, EQS Group, EU, Features, Hot stuff, News, regulation, USA /

Creating a compliance strategy that works across borders 2025-09-17 at 08:37 By Mirko Zorz In this Help Net Security interview, Marco Goldberg, Managing Director at EQS Group, discusses how compliance and regulation are evolving worldwide. He talks about how organizations can stay compliant with international rules while keeping their systems practical and user-friendly. Goldberg points

Creating a compliance strategy that works across borders Read More »

Senator Urges FTC Probe of Microsoft Over Security Failures

Compliance, FTC, investigation, Microsoft, Ron Wyden /

Senator Urges FTC Probe of Microsoft Over Security Failures 2025-09-11 at 14:30 By Ionut Arghire Senator Ron Wyden’s complaints focus on Windows security and the Kerberoasting attack technique.  The post Senator Urges FTC Probe of Microsoft Over Security Failures appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Senator Urges FTC Probe of Microsoft Over Security Failures Read More »

AI is everywhere, but scaling it is another story

Artificial Intelligence, CISO, Compliance, data security, News, report, Tines /

AI is everywhere, but scaling it is another story 2025-09-11 at 08:02 By Anamarija Pogorelec AI is being adopted across industries, but many organizations are hitting the same obstacles, according to Tines. IT leaders say orchestration is the key to scaling AI. They point to governance, visibility, and collaboration as the critical areas executives need

AI is everywhere, but scaling it is another story Read More »

Why organizations need a new approach to risk management

Compliance, cyber risk, Gartner, News, Risk Management, survey /

Why organizations need a new approach to risk management 2025-09-11 at 07:12 By Anamarija Pogorelec To succeed in the risk environment, risk, audit, and compliance leaders need to focus on what Gartner calls “reflexive risk ownership.” This is a future state where business leaders don’t just identify and manage risks after they occur, but instinctively

Why organizations need a new approach to risk management Read More »

Ex-WhatsApp Security Chief Sues Meta Over Vulnerabilities, Retaliation

Attaulah Baig, Compliance, lawsuit, Privacy & Compliance, WhatsApp /

Ex-WhatsApp Security Chief Sues Meta Over Vulnerabilities, Retaliation 2025-09-09 at 16:39 By Eduard Kovacs Attaullah Baig has filed a lawsuit against Meta and its executives, accusing them of retaliation over critical cybersecurity failures. The post Ex-WhatsApp Security Chief Sues Meta Over Vulnerabilities, Retaliation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Ex-WhatsApp Security Chief Sues Meta Over Vulnerabilities, Retaliation Read More »

Scroll to Top