The investment bank Morgan Stanley faces a $5 million class action lawsuit following claims that it failed to secure personal data that was stored on discarded computers. The suit has been brought by Morgan Stanley customer Timothy Smith in the …
This is a guest article written by David Balaban. The author’s views are entirely his own and may not reflect the views of IT Governance USA. DDoS (distributed denial-of-service) attacks have been wreaking havoc on organizations since the mid-1990s. Their …
US organizations that transfer personal data into and out of the EU for commercial reasons have been left in limbo after last month’s ECJ (European Court of Justice) ruling that invalidated the EU–US Privacy Shield. The framework has been heavily …
This is a guest article written by David Balaban. The author’s views are entirely his own and may not reflect the views of IT Governance USA. Ransomware is one of the most unnerving phenomenon in the cyber threat landscape. It …
This is a guest article written by Jori Hamilton. The author’s views are entirely her own and may not reflect the views of IT Governance USA. Make no mistake, protecting your business against cyber attacks is a team effort. A …
Invalidation of the Privacy Shield U.S. companies that do business in the EU are in for a nasty shock. For the past four years, the EU–U.S. Privacy Shield framework has allowed them to transfer data from the EU in line …
This is a guest article written by David Balaban. The author’s views are entirely his own and may not reflect the views of IT Governance USA. Security awareness traditionally revolves around the personal online hygiene mantra, with a bunch of …
When seeking to achieve certification to ISO 27001, organizations should avoid non-accredited certification bodies. Why? Non-accredited certification bodies typically offer a service that includes both consultancy and certification. No formally accredited ISO 27001 certification body will offer this type of …
This is a guest article written by David Balaban. The author’s views are entirely his own and may not reflect the views of IT Governance USA. The coronavirus outbreak continues to hold the world hostage, and health care facilities are …
More and more organizations are looking for guidance on implementing and certifying to ISO 27001. But what exactly is ISO 27001? What does it require? Many clients with an IT or technical background expect a list of security controls – …
