Information Security

Compliance Officer Pays $15,000 in SEC Settlement

April 07, 2011

The SEC has charged three former brokerage executives, including the former chief compliance officer, with failure to keep customer information confidential. This is the first time the SEC has brought financial penalties against individuals on the basis of its "safeguard rule." The CCO agreed to pay $15,000 without admitting or denying guilt.
 

Shop Talk: Cloud Computing Poses New Risks, Opportunities

February 15, 2011

Cloud computing promises to make IT implementations faster, cheaper, and smarter. So what's the catch? At a recent Compliance Week editorial roundtable co-hosted with Crowe Horwath, compliance, audit, and IT executives discussed the security and data management challenges associated with cloud computing. Full coverage inside.
 

Most Companies Not Erasing Sensitive Data

November 16, 2010

Most businesses don't properly erase sensitive data from old computers and hard drives, leaving them highly susceptible to data breaches, according to a survey by Kroll Ontrack.Only 49 percent of more than 1,500 respondents polled worldwide say their businesses are systematically deploying a data eraser method. Among that group, 75...
 

Outsourcing Failure Lands Zurich Record Fine

September 01, 2010

U.K. regulator the Financial Services Authority has hit Zurich Insurance with a record fine for failing to keep confidential customer information safe.Zurich lost the personal details of 46,000 customers, including in some cases their bank and credit card information.The regulator found that the company did not have adequate systems and...
 

Must-Read: Major HIPAA Changes Out for Comment

July 09, 2010

Healthcare compliance officers take note: Sweeping changes to the privacy rules under the Health Insurance Portability and Accountability Act are out for comment.The Department of Health and Human Services has published proposed rulemaking that will significantly modify the HIPAA Privacy, Security, and Enforcement Rules. The proposals are out for a...
 

Commerce Department Seeks Comment on Privacy Laws

May 03, 2010

Anyone dealing with domestic and global privacy laws take note: The Department of Commerce is seeking public comment on issues related to domestic and global privacy policies as part of a broad review of how those policies impact innovation in the information economy and on whether current laws serve consumer...
 

Poll: Gap Between Intent & Outcome in Data Protection

April 28, 2010

While high-profile security breaches and the legal and reputational risks that come with them have made protecting personal data critical area for companies, they may not be doing as well as they think in that department.According to a study by Accenture and The Ponemon Institute, there's a huge difference between...
 

Complying With Mass. Data Security Regs Proves Costly

September 24, 2009

For those organizations already tackling the task of complying with a new Massachusetts data security regulations that are currently slated to take effect March 1, compliance is proving costly, a recent survey shows.The rules, which are slated to take effect on March 1, 2010, impose significant data security requirements on...
 

More Delay, Changes for Mass. ID Theft Rules

August 19, 2009

Massachusetts' Office of Consumer Affairs & Business Regulations has once again delayed the effective date of its identity theft regulations and announced proposed changes to the rules that should make them more consistent with federal law and somewhat more palatable for smaller companies.Under the latest postponement, the proposed new rules...
 

Compliance Week Podcasts ...

Every week we chat with leading thinkers in compliance, auditing, risk management, public policy and more. These short (10-15 minutes) interviews are free to all. Follow Compliance Week podcasts on iTunes.

Compliance Week LinkedIn Group

Compliance Week now has a companion group on LinkedIn, where members can network and discuss the compliance and governance news of the day. Open to all compliance professionals, free to join.

Survey of the Week


Deloitte is conducting their annual Look Before You Leap: Managing Risks in Global Investments survey to better understand the approaches companies are taking to address compliance and integrity-related risks in emerging markets. 

Thought Leadership

The Risk Intelligent CCO
Sponsored by Deloitte

FCPA Compliance
Sponsored by Kroll Advisory Services

Upcoming Webcasts

ERP Security "Health Check"
Sponsored by ControlPanel GRC

Financial Continuous Monitoring
Sponsored by Infor

Event of the Week

World Class Financial Assurance
Sponsored by Infor