In this interview, Paul Koziarz, President and General Manager of Regulatory Compliance at CSI, talks about the misconceptions related to compliance, provides advice for CSOs and discusses the difference between being compliant and being secure.
The recently announced NIST framework is a lot of useless and redundant verbiage that collects existing standards that have existed for at least a decade.
Banks and financial services organisations have been a prime target for hackers for a very long time, and as a result of this the industry has had to adhere to security compliance regulations for a lot longer than most other sectors.
A new MeriTalk report, based on a survey of healthcare IT executives and underwritten by EMC, quantifies the organizational cost associated with security breaches, data loss, and unplanned outages for healthcare providers, at more than $1.6B a year.
For many organizations, focus on a single regulation, sometimes even single requirements in a single regulation, might make it difficult to spot commonalities.