.webp?width=2169&height=526&name=Compass%20regular%20transparent%20website%20(1).webp "Compass IT Compliance Logo")
-1.webp?width=2169&height=620&name=Compass%20regular%20transparent%20website%20smaller%20(1)-1.webp "Compass IT Compliance")
New York Files First 23 NYCRR 500 Enforcement Action
by Nicholas Foisy on August 20, 2020 at 1:00 PM
On July 21st, 2020, the New York Department of Financial Services (NYDFS) announced that it had filed its first enforcement action under the 23 NYCRR 500 cybersecurity regulation against First American Title Insurance, a large title insurance provider headquartered in Santa Ana, Calif …
CMMC: Moving Away from Self-Assessments
by Nicholas Foisy on July 2, 2020 at 1:00 PM
The Cybersecurity Maturity Model Certification (CMMC) is a certification procedure developed by the Department of Defense (DoD) to certify that contractors working with the DoD have the controls in place to protect sensitive data, also referred to as controlled unclassified informatio …
CMMC – What Is It, and Why Does It Matter?
by Derek Boczenowski on June 24, 2020 at 1:00 PM
There has been a lot of discussion around the cybersecurity interwebs lately about something called CMMC. CMMC stands for Cybersecurity Maturity Model Certification, which sounds super fancy and important, but what does it really mean?
Colorado Protections for Consumer Data Privacy Act - What to Know
by Sarina Resnick on September 12, 2019 at 2:02 PM
Last spring, Colorado followed the actions of several other states and countries by taking steps to enact legislation that helps consumers protect their data. The state passed the Protections for Consumer Data Privacy Act (HB18-1128). Signed into law on May 29, 2018, and taking effect …
CCPA – Compliance Before Consequence
by Sarina Resnick on May 8, 2019 at 1:02 PM
Becoming compliant with new laws can be frustrating. Companies are finally making it over the curve of being completely compliant under the recent General Data Protection Regulation (GDPR), and now there is yet another regulation that needs to be complied with. As of June 2018, The Ca …
Government Cyber Weaknesses & the Need for White Hats
by Todd Pritsky on April 15, 2019 at 1:01 PM
Have White Hat, Will Travel “A young boy, with greasy blonde hair, sitting in a dark room…[T]he weary system cracker telnets to the next faceless .mil site on his hit list.”