Incident Response

My Take on the 36 Hour Rule

It doesn’t cover us. . . . . . but we’ll agree to it anyway. Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . I thought I’d write a quick DNL about the new 36 hour rule.  It’s due in May, so I am not sur...
READ MORE

How the New Rule Applies to infotex

(It does not) But it’s “crazy complicated and seemingly circular.” A new article meant to inspire thought about IT Governance… Note: You can read the article where Adam discussed the rule itself here: FDIC and OCC Release New Incident Notification Rules. The new ...
READ MORE

Behind Your Credit Union’s Recent NCUA IT Exams Findings Webinar Registration

A Webinar-Movie In 2018 the NCUA started reviewing credit unions with $1 billion or more in assets using a tool known as the Automated Cybersecurity Examination Tool, or as we call it: the ACET. The expansion to smaller credit unions is inevitable. In the new year, cred...
READ MORE

FDIC and OCC Release New Incident Notification Rules

An update to your Incident Response and Business Continuity Plans will be required . . . . . . but will not replace any previous rules! A new article meant to inspire thought about IT Governance… Note: We have included a copy of the publication for your full revie...
READ MORE

Regulators Approve New Cybersecurity Reporting Rules

New changes will decrease the amount of time an organization has to report incidents to regulators and customers… An article review. Citing the increasing frequency and pace of cyberattacks in recent years, the FDIC, Federal Reserve Board of Governors and the OCC...
READ MORE

Truth In Disasters

How Do We Know What We Know? Making Sure You Can Understand What Happened in an Incident. Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . Until I reclined on my front yard, looking at the sky, following the instruct...
READ MORE

Data Breach Laws: A State-by-State Framework as of September 2021

What you need to know for compliance coast-to-coast. Back in 2020 we posted an article containing links to data breach laws from each state, and it has proven to be one of our more popular posts.  Because laws surrounding the use (and abuse) of technology are always evo...
READ MORE

Why a SIEM Is Not a SIM

Why It Rhymes With SEEM (And its Not the I Before E Rule) Another one of those Dan’s New Leaf Posts, meant to inspire thought about IT Governance . . . . It’s the Gestalt. The idea that the whole is greater than the sum of it’s parts. That’s not somet...
READ MORE

New Chinese Law Highlights Disclosure Debate

Questions about China’s new disclosure laws only highlight the uncertainty about disclosure in general… An article review. China recently made waves in the security world by announcing a new set of data security laws, one of which has added new fuel to a lo...
READ MORE

CATEGORIES

infotex

MANAGING TECHNOLOGY RISK

Linkedin-in Facebook-f Youtube Twitter

SERVICES

EDUCATION

COMPANY

CONTACT

SIGN UP FOR OUR BLOG

As part of infotex‘s service to our clients, find “non-mainstream” articles about relevant security issues.

Facebook Youtube Twitter