September 15, 2020 | Ask-An-Expert Writeups | Auditing | By Rich Guida, IANS Faculty
This month, the state of California released the final changes to the California Consumer Privacy Act (CCPA). This report provides an overview of the most important changes and explains how they may affect your compliance efforts.
The terms “exceptions” and “deviations” are used widely in IT security and compliance, with little standardization. This report offers clear definitions for each term and explains how to use them correctly within standards and compliance processes.
All Department of Defense (DoD) contractors that process, store or transmit controlled unclassified information (CUI) must meet the Defense Federal Acquisition Regulation Supplement (DFARS) minimum security standards or risk losing their DoD contracts – and documenting CUI data flows is an important requirement. This report provides a step-by-step process for creating NIST-compliant CUI data flows.