Governance, Risk and Compliance

Cyber risk governance requires strong executive leadership, a strategic framework for associated processes and related technological components.

Uber discloses 2016 data breach that affected 57 million drivers & customers. Chief security officer and attorney allegedly hid breach.

GDPR will require organizations to notify the Supervisory Authority (SA) of a data breach within 72 hours of discovering the breach. Can companies comply?

How a Tarte Cosmetics database leak exposed personal info for nearly 2 million customers. The problem: User error involving misconfigured Mongo database.

Samanage USA, which offers cloud-based IT support services, agrees to pay a $264,000 settlement related to Vermont health care exchange breach.

A financial index provider foretold Equifax's data breach more than a year ago, saying the rating agency “is vulnerable to data theft & security breaches."

A misconfigured Amazon Web Services (AWS) cloud bucket exposed 150,000 Patient Home Monitoring customers on the Web, Kromtech Security Center said.