mt_admin, Author at RadarFirst

DORA Compliance and Third-Party Risk Assessment

As the digital threat landscape evolves, no risk exists in a vacuum. With the increased reliance on third-party vendors, the risks organizations face from cyber threats can have impacts extending beyond the company, posing potential harm to consumers and even entire economies. To mitigate the fallout of cyber threats that arise through third-party vendors, the Digital Operational Resilience Act (DORA) is a pivotal regulation that aims to enhance information and communication technology (ICT) risk management and cybersecurity reporting through stringent oversight of third-party vendors.

CSIN Incident Response Planning

As new regulations aim at consumer and investor protections, the increased scrutiny of risk management, incident response, and business continuity planning is now a Board-level issue, and cyber event reporting and risk mitigation are crucial concerns for boards of directors across industries. How you plan to communicate risks during incident response is integral to compliant decision-making and escalation processes for CSIN reporting.

After the Incident: Navigating Notification Obligations

Imagine this: Your financial services organization handles sensitive customer information and falls victim to a ransomware attack. An employee clicks on a phishing email, triggering a series of events that compromise your systems. You make a ransom payment to regain access, only to discover that personal customer data was stolen. Now, you face a maze of notification requirements.

Why Data Privacy Matters Now More Than Ever

Data Privacy Week, January 27-31, 2025, is a crucial time to reflect on our digital lives and the information we share and manage online. In 2025, privacy is no longer just about closing doors or locking phones; it’s about controlling how your personal data is used and shared.

Navigating the Complex Landscape of Digital Governance

Let’s dive into some of the key takeaways from the IAPP Organizational Digital Governance Report 2024 and explore what industry leaders are doing to mitigate risk and drive organizational excellence in the year ahead.

The Best Privacy Podcasts for 2025

If your goal for the new year is to become more informed on changes in the privacy space – we got you covered. Continue reading for our list of best privacy podcasts for 2025.

New Solution: Acceleration Packs for Radar® Compliance

Acceleration Packs are the first step in defining organizational risk matrices for cyber event risk assessment and reporting. These regulation-specific guides are a shortcut to creating internal processes for risk assessment, triage, escalation, and reporting within one platform, Radar® Compliance.

Reporting for Computer-Security Incident Notifications (CSIN) Obligations

The CSIN rule requires banks to notify the OCC as soon as possible and no later than 36 hours after determining that a computer security incident has occurred. Continue reading to learn more about CSIN reporting.

Episode 9: Privacy in Partnership

On this episode of the On Your Radar podcast, we’re joined by Lauren Wallace, Chief Privacy Officer at RadarFirst. Following a discussion from VISION24 with Abby Martinez, privacy officer at Walgreens, and Erik Rahman, privacy director, HCSC, Lauren digs into key insights they shared to build a case for privacy incident management within your organization.

SEC Cracks Down on Misleading Cybersecurity Disclosures

One year after passing the Cybersecurity Disclosure Rule, the SEC cracks down on misleading cybersecurity disclosures. The SEC has imposed almost $7 million in fines on U.S. tech companies based on disclosures that left investors without a complete scope of cyber risk management and response processes.

AI in Finance Is Accelerating, but So Are the Privacy and Cybersecurity Risks