BBH Blog The latest news surrounding Managed Services, IT Solutions, and resources.
- 5 Ways to Streamline Your Patch Management Process by firstname.lastname@example.org (John Allegro) on May 24, 2021
Software patches for endpoints, servers, and applications are a critical component to maintaining the security and compliance status of your organization. They can help protect against newly discovered security vulnerabilities, add new features, or address an issue within a previous software release. Managing software patching across an organization’s many endpoints can be a challenging process for IT teams. Without an effective way to consistently scan for new patches and ensure patches are actually being applied to devices, devices can quickly become out of date, leaving potential gaps for cyberthreats wide open. To help keep up with the ever-growing number of devices and the patches required to keep them safe and compliant, many organizations are turning to more standardized patching management protocols. These 5 best practices below should be implemented to help streamline your patch management process.
- Are You NY SHIELD Act Compliant? by email@example.com (John Allegro) on May 21, 2021
Are You NY SHIELD Act Compliant? Effective October 23, 2019, for the notification enhancements and March 21, 2020, for the data security requirements, New York’s “Stop Hacks and Improve Electronic Data Security Act,” also commonly referred to as the SHIELD Act, aims to broaden the requirements for reporting data breach events and will enhance security standards and safeguards. Acting as an amendment to New York’s pre-existing data breach notification law, there are several significant changes that organizations need to be aware of to ensure compliance.Any individual or organization that houses digital data or personally identifiable information (PII) belonging to a New York state resident will be responsible for complying with the SHIELD Act, whether they operate in New York or not.
- 10 Critical Areas to Check for DFS-500 Compliance by firstname.lastname@example.org (John Allegro) on May 17, 2021
With cybersecurity threats on the rise, the New York State Department of Financial Services (NYSDFS) enhanced its DFS-500 cybersecurity regulation, which protects financial institutions’ customer information and IT systems.DFS-500 requires qualifying financial institutions, referred to as “Covered Entities,” to conduct risk assessments and develop security programs and incident response plans based on the results of said assessment.