One audit and comply with many
Almost every organization must comply with multiple standards and regulations. IT compliance audits are complex, expensive, and challenging. These can include but are not limited to PCI DSS, ISO 27001, ISO 37001, ISO 9001, ISO 27701, GDPR, HIPAA, CCPA, FFEC, FISMA, and NIST 800-53. Managing these audits individually poses several [...]
Switching your ISO certification to E Com Security Solutions
Being on top of cyber challenges is instrumental for business leaders and managers to thrive in this era of interconnectivity, technological dependency, and increasingly advanced threats. Effectively managing these challenges is complex and can only be done with a structured approach, which includes all levels of an organisation, usually referred [...]
California Consumer Privacy Act (CCPA) Compliance Checklist
E Com Security Solutions' 16-step CCPA compliance checklist can ensure you protect consumer data and meet security requirements outlined in the California Consumer Privacy Act. 1. Develop a Privacy Policy: Data collectors need to write or update their privacy policy to meet CCPA guidelines. Action Items: Create or update your privacy [...]
CMMC Compliance: NIST 800-171
In November 2021, the US Department of Defense (DoD) announced Version 2.0 of the Cybersecurity Maturity Model Certification (CMMC) information security framework and audit program. Driven by internal review and public comment, CMMC 2.0 updates the requirements for CMMC Version 1.02, released in January 2020 and now suspended. CMMC 2.0 [...]
NYDFS Cybersecurity Regulation Compliance Tips
The New York State Department of Financial Services (NYDFS) Cybersecurity Regulation requires New York insurance companies, banks, and other regulated financial services institutions—including agencies and branches of non-US banks licensed in the state of New York—to assess their cybersecurity risk profile. The NYDFS Cybersecurity regulation is designed to protect consumers [...]