NIST

BRI Unveils Robust Cybersecurity Measures to Safeguard Customer Data

Retrieved on: 
Monday, April 8, 2024
Crime, CSIRT, Education, Mass media, Digital, Risk, PCI DSS, Information, Law enforcement, Social media, CISO, Artificial intelligence, Information technology, IDX, DLP, NIST, Data loss prevention software, PCI, BRI, Fraud, Information security, Just Say No, APK, BBRI, Identification, Computer security, TBK, WhatsApp, Cryptocurrency

Various forms of fraud aim to steal confidential data of bank customers, so that fraudsters can carry out illegal transactions.

Key Points: 
  • Various forms of fraud aim to steal confidential data of bank customers, so that fraudsters can carry out illegal transactions.
  • Although data protection from the customer side is very important, BRI also continues to ensure that it has data protection and governance that refers to international standards that are industry references.
  • BRI reveals its latest initiatives to combat cybersecurity risks and protect customer data.
  • Regarding technology, BRI adopts a comprehensive approach based on the NIST framework (Identify, Protect, Detect, Respond) to minimize the risk of customer data breaches.

HireVue Joins US Artificial Intelligence Safety Institute Consortium

Retrieved on: 
Monday, March 18, 2024
HR, Science, Intelligence, Artificial intelligence, Consortium, NIST, Investment, Ethics, Medical device

Salt Lake City, UT, March 18, 2024 (GLOBE NEWSWIRE) -- HireVue , the pioneer and global leader in Human Potential Intelligence, today announced that the company has joined the U.S.

Key Points: 
  • Salt Lake City, UT, March 18, 2024 (GLOBE NEWSWIRE) -- HireVue , the pioneer and global leader in Human Potential Intelligence, today announced that the company has joined the U.S.
  • Artificial Intelligence Safety Institute Consortium , established by the National Institute of Standards and Technology ( NIST ), as part of its efforts to further advance the creation of ethical artificial intelligence.
  • HireVue is collaborating with the National Institute of Standards and Technology (NIST) in the Artificial Intelligence Safety Institute Consortium to establish a new measurement science that will enable the identification of proven, scalable, and interoperable measurements and methodologies to promote the development of trustworthy Artificial Intelligence (AI) and its responsible use.
  • Participation in the consortium is the next step in the company’s ongoing and pioneering work toward transparent and fairer hiring.

NJMEP CEO Peter Connolly Joins Board of Directors for the Foundation for Manufacturing Excellence and Junior Achievement

Retrieved on: 
Thursday, March 14, 2024
Organization, Education, Knowledge, Entrepreneurship, NIST, Workforce development, Human

CEDAR KNOLLS, N.J., March 14, 2024 (GLOBE NEWSWIRE) -- The New Jersey Manufacturing Extension Program (NJMEP) has recently broadened its reach with Peter Connolly, CEO, having been added to the board of two impactful organizations across the New Jersey business community.

Key Points: 
  • CEDAR KNOLLS, N.J., March 14, 2024 (GLOBE NEWSWIRE) -- The New Jersey Manufacturing Extension Program (NJMEP) has recently broadened its reach with Peter Connolly, CEO, having been added to the board of two impactful organizations across the New Jersey business community.
  • Mr. Connolly was recently appointed to the board of directors for the Foundation for Manufacturing Excellence (FORME), an entity that serves as the educational foundation for NIST MEP Centers.
  • He has also joined the Board of Directors of Junior Achievement, an organization focused on educating young people in work readiness, entrepreneurship, and financial literacy.
  • “As I step into this role on the board for FORME,” says Connolly about his recent appointment, “I am committed to leveraging NJMEP's legacy of excellence to drive positive change and progress.

BlueVoyant and Carahsoft Partner to Defend Public Sector from Cyber Threats

Retrieved on: 
Thursday, March 14, 2024
Microsoft, Organization, Public, IBM PS/ValuePoint, Trust (social science), Intelligence, Partnership, Information technology, Government agency, AI, SIEM, CMMC, Public sector, Carahsoft, NIST, Professional services, Security, SCD, National Association, State, Risk management

“Most U.S. Government agencies are managing several different cybersecurity solutions to identify the threats they need to address,” said Lonny Anderson, President of BlueVoyant Government Solutions.

Key Points: 
  • “Most U.S. Government agencies are managing several different cybersecurity solutions to identify the threats they need to address,” said Lonny Anderson, President of BlueVoyant Government Solutions.
  • Founded in 2017, BlueVoyant uniquely converges internal and external cyber defense into a single solution suite, leveraging machine-learning-driven automation and human-led expertise to assess, operationalize, verify and remediate threats.
  • The BlueVoyant Cyber Defense Platform continuously monitors an organization’s network, endpoints, attack surface and supply chain, as well as the clear, deep and dark web.
  • “As the Public Sector faces mounting cyber threats to all aspects of operations, it is critical that agencies have access to a scalable, modular solution that meets the demands of today’s cyber threat landscape,” said Alex Whitworth, Cybersecurity Vertical Executive at Carahsoft.

Tidepool Achieves SOC 2 Type II Compliance

Retrieved on: 
Friday, April 5, 2024
Software, Health, Diabetes, Data Management, Health Technology, Technology, Other Technology, Security, Single sign-on, SOC, AICPA, CSA, Attention, Risk management, PHI, GDPR, CCPA, NIST, HIPAA, American Institute, SAAS, PCI, SSO, EHR, SOC 2, ISO, Data management, Certified Public Accountant, Audit

Tidepool, a software company committed to innovations in diabetes management, is thrilled to announce the achievement of SOC 2 Type II compliance in accordance with American Institute of Certified Public Accountants (AICPA) standards for SOC for Service Organizations also known as SSAE 18.

Key Points: 
  • Tidepool, a software company committed to innovations in diabetes management, is thrilled to announce the achievement of SOC 2 Type II compliance in accordance with American Institute of Certified Public Accountants (AICPA) standards for SOC for Service Organizations also known as SSAE 18.
  • Achieving this standard with an unqualified opinion serves as third-party industry validation that Tidepool provides enterprise-level security for customers’ data secured in the Tidepool Data Platform.
  • “With this attestation, we are confirming our ongoing commitment to the compliance standards reflected in achieving and maintaining SOC 2 Type II compliance,” says Ben Derr, Lead Security Engineer at Tidepool.
  • An unqualified opinion on an SOC 2 Type II audit report demonstrates to Tidepool’s current and future customers that they manage their data with the highest standard of security and compliance.

Axis Raises The Bar on Cybersecurity to Provide Wide-Ranging FIPS 140-Compliant Products to Government Customers

Retrieved on: 
Thursday, April 4, 2024
Technology, Audio, Video, Defense, Telecommunications, IOT (Internet of Things), Software, Contracts, Networks, Internet, Hardware, Semiconductor, Data Management, Security, Government Technology, NXP Semiconductors, HTTPS, Certification, Organization, TLS, Communication, Private sector, IEEE, NFC, NIST, FIPS, Confidentiality, NXP, AXIS, Multimedia, Government, Guideline, Axis Communications, Medical device

This move will improve the cybersecurity postures of Axis customers that must meet the FIPS 140 certification, specifically in the government and critical infrastructure sectors.

Key Points: 
  • This move will improve the cybersecurity postures of Axis customers that must meet the FIPS 140 certification, specifically in the government and critical infrastructure sectors.
  • By complying with the standard, Axis provides assurance to customers about the security level in Axis devices.
  • “Customers need to be confident that Axis devices ensure long-term cybersecurity and meet the latest requirements such as FIPS 140-compliance,” said Johan Paulsson, Chief Technology Officer, Axis Communications.
  • Axis’ approach to cybersecurity is to provide device protection throughout the device lifecycle, from start to beyond the point of purchase.

Securiti Launches Industry’s First Solution To Automate Compliance With EU AI Act and Other Emerging Regulations

Retrieved on: 
Tuesday, April 2, 2024
Apps, Applications, Legal, Technology, Other Technology, Professional Services, Business, Software, Data Analytics, Data Management, Artificial Intelligence, Risk management, Organization, Agility, Economy of Singapore, Artificial intelligence, AI, NIST, Access, Privacy, Medical device

The new Securiti Compliance Management solution harnesses technology to reduce manual labor, automate compliance, and comply with the most recent AI regulations.

Key Points: 
  • The new Securiti Compliance Management solution harnesses technology to reduce manual labor, automate compliance, and comply with the most recent AI regulations.
  • With most enterprises rapidly embracing AI models and applications, organizations can now leverage the Securiti Compliance Management solution to adhere with quickly evolving AI regulations and frameworks — including the recently passed European Union AI Act, the NIST AI Risk Management Framework and the Singapore Model AI Governance Framework.
  • This solution helps businesses navigate complex overlapping regulations, reduce costs for compliance and streamline collaboration across organizational silos.
  • Securiti’s Compliance Management Platform offers a robust solution that automates compliance with global AI and data frameworks using common controls and tests.

Blumira Introduces 30-Day XDR Trial, Further Democratizing Access to Cybersecurity Solutions

Retrieved on: 
Tuesday, April 2, 2024
Networks, Security, Data Management, Technology, Software, Automation, Organization, XDR, Environment, Luigi, Linux, NIST, Paramount, ISO, Medical device

Blumira , a leading security and operations platform, today announced a free 30-day trial of its extended detection and response (XDR) platform.

Key Points: 
  • Blumira , a leading security and operations platform, today announced a free 30-day trial of its extended detection and response (XDR) platform.
  • The 30-Day XDR Trial will enable IT teams to secure their organizations with no additional headcount or infrastructure and no costly security team.
  • “Our 30-Day XDR Trial continues to demonstrate our commitment to democratizing cybersecurity, empowering businesses to safeguard their digital assets effectively and easily,” said Jim Simpson, CEO of Blumira.
  • “Cybersecurity is paramount in today's continuously evolving digital landscape, and we believe that every organization, regardless of its size or resources, deserves access to innovative, state-of-the-art solutions.

LogRhythm Unveils Advanced Capabilities for Cloud-Native SIEM Platform, LogRhythm Axon

Retrieved on: 
Monday, April 1, 2024
Professional Services, Data Management, Security, Data Analytics, Technology, Software, Networks, SOC, RBAC, Organization, MITRE ATT&CK, Case management, Partnership, MITRE, CMMC, LogRhythm, GitHub, NIST, HIPAA, ISO27001, PCI-DSS, Online shopping

The latest innovations to LogRhythm Axon facilitate seamless dashboard and search import/export to community repositories, bridging the communication gap.

Key Points: 
  • The latest innovations to LogRhythm Axon facilitate seamless dashboard and search import/export to community repositories, bridging the communication gap.
  • Furthermore, LogRhythm Axon introduces key features to streamline auditing for compliance standards and enable greater efficiency with security analytics mapped to MITRE ATT&CK use cases.
  • “By providing security teams advanced intelligence and analytics capabilities, we enable organizations to stay ahead of threats and safeguard their digital assets with confidence.
  • “LogRhythm Axon has bolstered our security operations, and the impact of the product’s bi-weekly releases is unparalleled.

Google Cloud’s CISO Phil Venables and Mandiant CEO Kevin Mandia to Headline Cloud Security Alliance AI Summit at 2024 RSA Conference

Retrieved on: 
Tuesday, March 26, 2024
Technology, Mobile, Wireless, Defense, Artificial Intelligence, Government Technology, Contracts, Finance, Public Transport, Professional Services, Security, Other Transport, Data Analytics, Transport, Software, Networks, Engineering, Internet, Hardware, Automotive Manufacturing, Aerospace, Data Management, Logistics, Supply Chain Management, Manufacturing, Cloud, Computer security, Special Investigations, CSA, Google Cloud, Conference, Organization, Goldman Sachs, Environment, RSAC, Risk, George Washington University, Council, CISO, Artificial intelligence, AI, Lafayette College, Trellix, NIST, Lockheed Martin, Cloud computing, Air force, Partner, RSA Conference, Foreign policy, Pentagon, Medical device

The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today announced that Google Cloud’s Kevin Mandia, CEO of Mandiant, and Phil Venables, Chief Information Security Officer (CISO), will headline the CSA AI Summit , held on May 6 in conjunction with the 2024 RSA Conference .

Key Points: 
  • The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today announced that Google Cloud’s Kevin Mandia, CEO of Mandiant, and Phil Venables, Chief Information Security Officer (CISO), will headline the CSA AI Summit , held on May 6 in conjunction with the 2024 RSA Conference .
  • “Everyone can learn volumes from the first-hand experiences that Kevin and Phil will be sharing about working with AI at scale,” said Caleb Sima, chair of CSA’s AI Safety Initiative.
  • Phil Venables is the CISO of Google Cloud, where he leads the risk, security, compliance, and privacy teams.
  • Kevin Mandia is the CEO of Mandiant at Google Cloud.