All articles by Adrianne Appel – Page 10
-
PremiumExpert: How data hoarding increases businesses’ cyber risks
Holding on to data for longer than necessary creates vulnerabilities for businesses by giving cyberattackers more avenues to access an organization’s computer systems.
-
PremiumExpert: Clorox ‘trying to do the right thing’ with rapid cyberattack disclosures
The timing of a recent cyberattack against Clorox juxtaposed against the Securities and Exchange Commission’s adoption of its cybersecurity incident disclosure rule soon to take effect has presented a case study regarding how companies might seek to meet the requirements of the rule.
-
PremiumNIST framework might help organizations prepare for AI regulations
The new artificial intelligence framework released by the National Institute of Standards and Technology is not a checklist for AI but might help organizations better manage the risks associated with the technology.
-
News BriefSEC accuses Prager Metis of hundreds of auditor independence violations
Accounting firm Prager Metis violated auditor independence rules through use of indemnification provisions in its engagement letters hundreds of times during a period of nearly three years, the Securities and Exchange Commission charged in a lawsuit.
-
News BriefNewell, ex-CEO settle with SEC over sales disclosures
Consumer products company Newell Brands agreed to pay $12.5 million as part of a settlement with the Securities and Exchange Commission addressing allegations the company misled investors about its core sales growth.
-
PremiumAssessing the value of COSO sustainability reporting guidance
Companies that haven’t yet set up verifiable reporting in their sustainability programs have a ready reference available in the framework put out by the Committee of Sponsoring Organizations of the Treadway Commission, experts discussed at CW’s virtual ESG Summit.
-
PremiumScope 3 emissions best practices: Be transparent, thorough
There is much companies can do—and must do, given upcoming regulatory requirements—to rein in Scope 3 emissions, sustainability expert Susan McNichols discussed at CW’s virtual ESG Summit.
-
PremiumSurvey: Tech gaps, third parties pose biggest ABAC threats
A recent survey conducted by Compliance Week and Morgan Lewis determined areas of insufficient resource support to combat bribery and corruption, along with trends in third-party due diligence.
-
PremiumCPPA eyeing broad scope in early discussions around data risk assessments
Draft risk assessment regulations under the California Consumer Privacy Act are designed to prohibit businesses from handling consumer data if uncontrolled risks—to the security and privacy of the consumer, the public, or the business—outweigh the benefits.
-
PremiumBig Tech wants AI ‘referee,’ but lawmakers differ on approach to regs
Federal lawmakers shined a spotlight on artificial intelligence this week, raising the possibility that Congress will—eventually—legislate some controls on the burgeoning technology should middle ground be found.
-
PremiumCalifornia cybersecurity audit rule scope begins taking shape at CPPA meeting
A final version of California’s cybersecurity audit rules likely won’t be released until later next year at the earliest, according to a rough timeline discussed by the California Privacy Protection Agency.
-
PremiumFrom 5 to 11: Keeping up with new state data privacy laws
If multi-state businesses thought at the start of 2023 complying with a patchwork of U.S. state privacy laws was going to be a lot of work, now they must be overwhelmed. Experts assess the fast-evolving U.S. privacy landscape.
-
PremiumPreparing for SEC cybersecurity rules an opportunity for collaboration
Businesses can prepare for the Securities and Exchange Commission’s upcoming cybersecurity disclosure rule by going through it and identifying key gaps in compliance.
-
PremiumCyber expert: Reach for data security to achieve compliance
Data security and compliance are not one and the same but have enough overlap that organizations can take steps when building a data security program to move closer to achieving compliance.
-
PremiumCompanies get say on Biden executive order restricting China tech investments
President Joe Biden’s recent executive order to restrict certain outbound investments to China offers an opportunity for companies to help shape the program by offering input through comment.
-
PremiumCovington mulling appeal of ruling in SEC breached client case
Covington & Burling is leaving open the possibility of appealing a recent federal court order requiring the law firm to provide the names of hacked clients to the Securities and Exchange Commission.
-
PremiumRisks, opportunities under SEC’s cyber incident disclosure rule
The clock is ticking for public companies to put in place policies and practices to meet the requirements of the Securities and Exchange Commission’s newly approved cybersecurity incident disclosure rule.
-
PremiumNeed to know: New York City AI bias law
Companies that use automated tools to screen candidates for jobs based in New York City must check those systems for bias or potentially run afoul of a first-in-the-nation law.
-
PremiumIBM report: Data breach costs at all-time high; AI helping detection
The global average cost of a data breach reached a new all-time high of $4.45 million in 2023, according to IBM’s annual report.
-
PremiumBiden cyber strategy plan calls for big businesses to step up
The “biggest, most capable, and best-positioned” businesses must assume a greater share of mitigating cyber risks, the White House said in announcing the National Cybersecurity Strategy Implementation Plan.