The Securities and Exchange Commission (SEC) has been actively focusing on enhancing cybersecurity disclosures and requirements for public companies. As cyber threats continue to evolve and pose significant risks to businesses and investors, the SEC’s efforts aim to improve transparency... Read More
A critical security vulnerability has recently come to light and poses a significant risk to organizations using MOVEit Transfer, the managed file transfer software developed by Ipswitch. A zero day exploit, CVE-2023-34362, is actively being exploited by malicious hackers to... Read More
Ransomware is the #1 cyber risk of 2021 with estimates that 50% of all businesses have been hit. In this episode of Culture of Compliance, Sabrina Serafin interviews Skeet Spillane of Pillar Technology Partners about the magnitude of the problem... Read More
In this world of increased data and cyber-security risk, institutional investors have increased their awareness and due diligence requirements of private equity firms. FD’s National Practice Leader, Bob Woosley discusses the evolving trends in the diligence of private equity firms... Read More
The State Department recently fined Honeywell $13M for cybersecurity shortcomings. In this episode, FD’s Sabrina Serafin interviews Scott Edwards, CEO and Founder of Summit 7, to discuss CMMC and what companies working with the US Department of Defense need to... Read More
The Cloud Security Alliance (CSA) is an industry-leading organization dedicated to developing best practices, awareness, standards, and certifications for security in cloud computing environments. They were one of the first to recognize the risks unique to cloud implementations. CSA offers... Read More
Assurance is a common buzzword in the realm of cyber security and risk management. By definition, this term relates to providing confidence in something. But in the world of cybersecurity, regulatory compliance, and risk management understanding the relevancy and meaning... Read More
By Derrick Rice and Eric Geving What do we know? The recent news of the SolarWinds Orion hack and its ever-growing list of impacted clients is unlike any hack within recent history. The SolarWinds Orion client base of 300,000+ users... Read More
Who would have known that the title of one of the late, great Kenny Roger’s most successful hits would be applicable to the world of professional services, particularly HITRUST? As a ten-year veteran in the cyber, risk management and compliance... Read More
Cybersecurity should be a consideration for both the buyer and the seller in the transaction process. Sabrina Serafin, FD Partner and National PRG Practice Leader, interviews Patrick Kelley, Chief Technology Officer of Critical Path Security. Patrick explains how companies can... Read More
