We’ve regularly written about maintaining security and compliance with third-party vendors. While vendors and managed service providers are a crucial part of digital economies, it’s up to the client businesses to ensure they work with vendors that meet their needs.
Following previous discussions of third-party vendor security under standards like SOC 2 and HIPAA, we’re now covering best practices for vendor management under PCI DSS 4.0.
An emergency vulnerability has emerged in Ivanti products and appliances, and it has sent many service providers, especially those in the federal space, in a rush to close their gaps and respond as best they can.
This article covers the incident, the government’s response, and what it means for service providers.
The protection of consumer information is one of the major concerns of the businesses involved in nearly any sector of the economy, particularly financial institutions. The Federal Trade Commission (FTC) Safeguards Rule is a critical requirement for these organizations. It provides specific requirements for certain financial institutions, including a plan for ensuring compliance with the regulation, identified challenges in meeting the rules, and a process to audit for compliance.