Blog

Privacy notices are under scrutiny whether due to the new California “Do Not Track” disclosure requirements for web sites; or the recent FTC Settlement with a smartphone developer on a “Flashlight” application that collected and shared geo-location information without the customers consent. ....

2013 will go down as an extremely unusual year as an unprecedented amount of attention was placed on a single risk area – third party risk. Beginning with the Consumer Financial Protection Bureau (CFPB) guidance in April and ending with the Federal Reserve guidance in December, both regulatory age ....

PRESS RELEASE FEBRUARY 4, 2014 Contact: Lisa MacKenzie, MacKenzie Marketing Group, 503-705-3508, lisam@mackenzie-marketing.com or Kelly Stremel, kellys@mackenzie-marketing.com Fourth-Party Data Breaches Seen as Latest Threat to Customer Information; Healthcare and Financial Services Primary Target ....

Operational risk management and compliance management today require levels of management and board reporting. Traditional risk management annual reporting was constructed of key status of compliance programs, including approvals of policies and action plans. Today, risk management and compliance te ....

On December 5th the Federal Reserve issued a new Guidance on Managing Outsourcing Risks. The Guidance identifies the six (6) primary types of risk and how they should be addressed. Read the Guidance on Managing Outsourcing Risk ....

On November 14th and 15th, the National Institute of Standards and Technology (NIST) hosted its 5th Cybersecurity Framework workshop, to discuss the implementation and future governance of their Cybersecurity Framework. Bringing together critical Infrastructure owners and operators and cybersecur ....