This is a monthly summary of articles and updates from DGC’s IT Risk practice that keeps you and your business informed about current technology, cybersecurity threats and regulations. Read more
This law requires internet service providers to obtain consent prior to using, disclosing, selling or permitting access to a customer’s personal information, unless an exception applies. Read more
Even though Massachusetts 201 CMR 17.00 has been around for a little over a decade, many companies still do not have the proper documentation and procedures in place to comply with this requirement. Read more
The much-anticipated Cybersecurity Maturity Model Certification was published earlier this year. Compliance efforts are underway across the defense supply chain. Read more
Nick DeLena discusses the new cybersecurity framework for defense contractors, the Cybersecurity Maturity Model Certification and the path to compliance for companies that will be subject to it. Read more
The data security requirements took effect on March 21, 2020. If you have not assessed your company’s compliance with this regulation, your company is currently at risk. Read more
Many companies are operating in contingency mode with physical offices closed and the majority of employees working from home. For many companies, this is the first time they are enacting their Business... Read more
Many organizations have not widely embraced flexible work environments - and now they are being forced to do so quickly. This sudden shift presents enormous operational and security challenges. Read more
The framework will apply to all companies doing business with the DoD later this year, either directly or as a subcontractor, and is designed to protect Federal Contract Information and Controlled Unclassified... Read more
The laws require companies to establish comprehensive cybersecurity risk management programs that will identify threats and inform and prioritize remediation efforts. Read more
