Compliance Standards Archives | Page 24 of 80

Department of Defense Guidance on Safeguarding CUI

by RSI Security April 21, 2023June 30, 2023

Working with the US Department of Defense (DoD) is an attractive opportunity for contractors in various industries. There is honor in working with the largest, most powerful military, and achieving “preferred contractor” status can also be lucrative. That said, it’s not easy to achieve this status. You’ll need to be compliant with regulatory frameworks and keep abreast of every update published by the DoD, such as the most recent one on how to safeguard CUI or controlled unclassified information.

April 21, 2023June 30, 2023 0 comment

HIPAA / Healthcare Industry

What are the Penalties for HIPAA Non-Compliance?

by RSI Security April 21, 2023June 21, 2023

written by RSI Security

These are trying times for the healthcare industry. Resources across various facilities are being exhausted due to the COVID-19 pandemic and previously unforeseen levels of traffic. But that’s not all: cyberattacks on the healthcare sector rose 150 percent in just the early stages of the pandemic, according to one report. The need for cyberdefense is clear. Now, more than ever before, penalties for HIPAA violations pale in comparison to other threats compliance can assuage.

April 21, 2023June 21, 2023 0 comment

CryptoCurrency Security Standard (CCSS) / Blockchain

Guide to Public Key Cryptography Standards in Cyber Security

by RSI Security April 9, 2023April 11, 2023

written by RSI Security

Public key cryptography standards (PKCSs) are widely used methods for encrypting sensitive data to make it unreadable. There are 11 active PKCSs, which define public key and private key pairs. The PKCS (and cryptography broadly) are key considerations for regulatory compliance.

April 9, 2023April 11, 2023 0 comment

HIPAA / Healthcare Industry

Your Guide to HIPAA Breach Determination and Risk Assessments

by RSI Security April 5, 2023May 30, 2023

written by RSI Security

Organizations both within and adjacent to healthcare need to comply with the Health Insurance Portability and Accountability Act of 1996 (HIPAA). One major component of HIPAA compliance is preventing breaches. However, if one appears to have happened, a breach determination and risk assessment will determine whether you need to follow Breach Notification requirements.

April 5, 2023May 30, 2023 0 comment

PCI DSS

How Many PCI Controls are There?

by RSI Security March 30, 2023February 12, 2025

written by RSI Security

Companies that process payments through cards and other electronic means open themselves up to cybercrime risks. Hackers target card information for direct theft and fraud and payment processors can also fall victim to cyberattacks. To mitigate these risks, the Security Standards Council (SSC) of the Payment Card Industry (PCI) has devised numerous controls across several security standards to keep companies and consumers safe. But this begs the question: how many PCI controls are there, and what are PCI controls in the first place?

March 30, 2023February 12, 2025 0 comment

HIPAA / Healthcare Industry

What are Covered Entities Under HIPAA?

by RSI Security March 29, 2023September 28, 2023

written by RSI Security

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) exists to secure protected health information (PHI). Most companies that provide healthcare services and their strategic partners need to implement HIPAA controls to protect stakeholders from cybercrime threats. Want to know if your company is a HIPAA-covered entity? Keep reading to discover if you are and what HIPAA compliance entails.

March 29, 2023September 28, 2023 0 comment

SOX 404

What Are the SOX 404 Requirements?

by RSI Security March 20, 2023August 15, 2025

written by RSI Security

Auditing laws cover various topics and industries from social media privacy to financial transactions. Each auditing process targets different weaknesses in order to tackle the risks that accompany technological advancements.

In particular, the multi-faceted Sarbanes-Oxley Act (SOX) deals with corporate operations and publicly traded companies. The 404 section requirement addresses financial documentation.

Are you aware of the SOX 404 requirements? Find out everything you need to know about compliance with our comprehensive guide.

March 20, 2023August 15, 2025 0 comment

CMMC

What is CUI Specified?

by RSI Security March 20, 2023May 31, 2023

written by RSI Security

Organizations that work closely with the US government need to take special precautions to safeguard data that government agencies deem sensitive. One of the most common kinds of data that needs protecting is Controlled Unclassified Information (CUI). And CUI Specified is some of the most tightly regulated CUI. So, what is CUI Specified, and how can you secure it?

March 20, 2023May 31, 2023 0 comment

NERC CIP

NERC CIP Standards Summary: All Mandatory Requirements, Explained

by RSI Security March 18, 2023May 30, 2025

written by RSI Security

Compliance with the NERC CIP standards is critical to mitigating cybersecurity risks to North America’s bulk electric system (BES), which is also known as the bulk power system (BPS). The NERC CIP provides a comprehensive list of security controls to help organizations effectively and securely operate the BES. Read our blog to get a sense of the NERC CIP standards summary.

March 18, 2023May 30, 2025 0 comment