RSI Security

Blog

  • What is the FTC Safeguards Rule?

    What is the FTC Safeguards Rule?

    The Federal Trade Commission (FTC) requires institutions that handle customer data to keep it safe from cybersecurity threats by implementing controls that comply with its Safeguards Rule. FTC compliance helps protect consumers from data privacy and security threats in the short and long term. Read on to learn about which FTC safeguards apply to your business. (more…)

  • What is the Standard Contractual Clause (SCC)?

    What is the Standard Contractual Clause (SCC)?

    Data privacy safeguards are critical to protecting sensitive GDPR data from privacy and security threats. One of the safeguards specific to the EU GDPR is the standard contractual clause (SSC), which outlines essential protections for data processors and controllers to follow when handling protected types of information. Read on to learn more about how the SSC works.  (more…)

  • When Will HITRUST CSF V10 Be Released?

    When Will HITRUST CSF V10 Be Released?

    Compliance with the HITRUST CSF framework is critical to keeping sensitive data safe, regardless of the various security risks your organization may face. Although the HITRUST Alliance recently announced the release of HITRUST CSF v10, the framework has not been released. Read on to learn when you can expect its release—and how to prepare for it. (more…)

  • Policies for Information Security in 2022

    Policies for Information Security in 2022

    As cybersecurity threats change each year, it is critical for organizations to implement up-to-date security controls that can keep digital assets safe year-round. The best way to oversee the implementation of these controls is with the help of strategies and policies for information security. Read on to learn more about information security policies in 2022 and beyond.  (more…)

  • What is a PKI (Public Key Infrastructure) in Cyber Security?

    What is a PKI (Public Key Infrastructure) in Cyber Security?

    Securing communication on your web browsers is critical to mitigating data breaches. One way to safeguard your browsers is to leverage the tools provided by public key infrastructure (PKI). So, what is PKI in cyber security? At a base level, PKI ensures that data remains encrypted while it is being transmitted over web browsers. Read on to learn more about PKI security. (more…)

  • Privacy Controls and NIST SP 800-53

    Privacy Controls and NIST SP 800-53

    Maintaining high data privacy and security standards is critical to preventing cybersecurity threats from compromising your data. For a more streamlined implementation of security and privacy controls, NIST recommends a set of diverse requirements that cater to any organization, regardless of size, industry, or business needs. Read on to learn more about NIST SP 800-53. (more…)

  • Compliance Risk Examples & How to Mitigate Them

    Compliance Risk Examples & How to Mitigate Them

    Compliance with regulatory standards is critical to keeping your organization’s security controls up-to-date and safeguarding any sensitive data you handle. However, many organizations face challenges meeting the expectations of regulatory frameworks, resulting in compliance risks. Read on to learn about common compliance risk examples and how to mitigate them. (more…)

  • How to Strategize and Implement an Effective MDM Security Policy

    How to Strategize and Implement an Effective MDM Security Policy

    With remote work being considered a relatively normal practice nowadays, due in part to the pandemic, we are seeing more opportunities arise for malicious actors to hack into a business’ system remotely. Now is the time to learn how to strategize and implement an effective MDM security policy. Below you will find a thorough definition of MDM security policies, why you should implement one for your business, and how to go about implementing one effectively. (more…)

  • Breaking Down the PCI Logging Requirements

    Breaking Down the PCI Logging Requirements

    Safeguarding sensitive cardholder data starts with mitigating risks to the IT infrastructure that handles this information. One way to do so is to comply with the PCI logging requirements, which guide you on how to audit the IT infrastructure that handles sensitive data and the controls that protect it. Read on to learn about the requirements and how to follow them. (more…)

  • PCI Awareness Training Requirements, Explained

    PCI Awareness Training Requirements, Explained

    PCI Awareness Training is essential for ensuring your organization’s PCI security controls remain effective. When employees are trained on best practices to safeguard sensitive cardholder data, they become the first line of defense against potential breaches. Meeting PCI awareness training requirements helps your team stay informed, maintain PCI DSS compliance, and protect valuable data year-round.
    (more…)