Policy Explainer

sec
Policy Explainer

SEC Pushes Ahead with New Cyber Rules

At the tail end of July, the SEC finalized a proposed rule requiring incident and other disclosures. The new rule is already facing significant industry backlash with even the Chamber of Commerce slamming the r...

states data priv
Policy Explainer

A State-by-State Data Privacy Roundup

As it stands today, 11 states in the United States have passed comprehensive data privacy laws with many of these just going through in the first half of this year. Comprehensive data privacy goes hand-in-hand ...

AG
Policy Explainer

This is Why We Can’t Have Nice Things

The Best Day March 3rd, 2023, was an exciting day in the cybersecurity regulatory space. A memo released by the Environmental Protection Agency (EPA) marked the first federal mandatory cyber regulation outsi...

sec post
Policy Explainer

Companies Face New SEC Regulations 

Many companies are now grappling with the imminent enforcement of the new SEC regulations. According to Davis Polk, this affects specifically “market entities” including “many types of broker-dealers, clearing ...

epa
Policy Explainer

New EPA Mandatory Requirement Shows What’s to Come for Critical Infrastructure Cybersecurity Regulation

The Environmental Protection Agency (EPA) released mandatory regulations aimed at the cybersecurity of U.S. water filtration systems by requiring states to survey the networks governing drinking water filtratio...

NCS
Policy Explainer

What the New National Cyber Strategy Means for Your Business

On March 2nd, the Biden Administration released the much-anticipated National Cyber Strategy (NCS). The NCS outlines and defines the White House’s goals in cyber policy making and gives us insight into what the...

Untitled design-51
Policy Explainer

A Shifting Liability Landscape

As things stand now, when a company falls victim to a cyberattack, it is held liable for that incident. Vendors and manufacturers are able to push out products riddled with vulnerabilities without fear of signi...

Twitter website
Policy Explainer

Twitter 2-Factor Authentication Changes

This month, Twitter announced that as of March 20, text-based two-factor authentication will only be available for Twitter Blue subscribers. Twitter noted that SMS 2FA is very popular, but is the most likely to...

Schools website
Policy Explainer

The State of Cybersecurity in K-12 Education

Though the majority of us lament it, we all see that K-12 schools are chronically underfunded. Cleveland School District in the Mississippi Delta kicked off the new school year in August without air conditionin...

PCI DSS v.4.0 Explained-2
Policy Explainer

Explainer: Payment Card Industry Data Security Standard v.4.0

The latest version of the Payment Card Industry Data Security Standard (PCI DSS) was announced last March with full compliance required by March 31, 2025. This means that those looking to shore up their securit...