The amendments significantly expand expectations around incident response, customer notification, and service provider oversight.
The amendments significantly expand expectations around incident response, customer notification, and service provider oversight.
Janaya Moscony and Leigh Wittick spoke to GRIP about how financial institutions can demonstrate compliance with the many components of Reg S-P.
Reporting/registration requirements and the consequences for organizations in countries where implementation of the NIS2 Directive is delayed.
Data center providers and customers must take a proactive approach when navigating NIS2, as fines for non-compliance will be substantial.
International body consults on common format for reporting operational incidents.
Max Veve explains how an Incident Command System can help your organization’s incident/crisis management process.
Amendments to Reg S-P will modernize the rules that govern the treatment of consumers’ nonpublic personal information.
The rules will require registrants to describe processes for identifying and managing material risks from cybersecurity threats.