As threat actors continue to evolve, so does the tooling that protects a firm's environment. In addition to training, security advisories should be distributed on a regular basis, and security ...

What's at stake: The CFPB uses outdated software and has no strategy for responding to cybersecurity risks, the report found. Supporting Data: The CFPB's information security program experienced a ...

For detailed information on the steps and considerations discussed below, see Data Security Risk Assessments and Reporting (US) on Practical Law. a written information security program (WISP) that ...

On October 31, OIG for the Fed and the CFPB released its 2024 Audit of the Board’s Information Security Program. The audit found that the Board’s information security program continues to operate at a ...

The Federal Trade Commission’s Standards For Safeguarding Customer Information Rule (aka The “FTC Safeguards Rule”) is a regulation requiring entities to develop, implement and maintain a ...

Drug and device manufacturers are increasingly targeted by cyber threats that can compromise patient safety, intellectual property, and other critical data and systems, while also facing new ...

What is security awareness training? Security awareness training is a cybersecurity program that aims to educate everyone in an organization about potential cyber threats, as well as actions they can ...

A view of the Consumer Financial Protection Bureau (CFPB) headquarters in Washington, D.C., on Feb. 10, 2025. (Photo by Saul Loeb / AFP via Getty Images) The Trump administration’s ongoing decimation ...