compliance Archives - Cyber Protection Magazine

A world surrounded by disconnected data centers

Prediction 2026: Beginning of the end of the WWW

Lou Covey January 20, 2026

As the world stumbles head on into deglobalization we predict national sovereign clouds will replace international access to data. That is good news for in-country corporations and for security companies in specific fields. It may not be so good for large multinational tech firms and people living in authoritarian countries. It may also mean the end of the World Wide Web.

Sovereign clouds used to be referred as proprietary clouds to keep intellectual property (IP) secure. National sovereign clouds today are used to control access to citizens private data. For big tech, multiple governments require organizations to comply with data protection laws requiring specific data residency and management practices. National sovereign clouds facilitate that within the country but create significant complexity for multinational operations. Even within a specific politico-economic bloc like the EU, there are different regulations within the bloc for data security.

In a recent blog post, Cory Doctorow summed up the current business climate caused by geopolitical shifts, "There's finally political space to stop worrying about tariffs and reconsider anti-circumvention laws, to create disenshittification nations that stage raids on the most valuable lines of business of the most profitable companies in world history – Big Tech."

Free Membership Required

You must be a Free member to access this content.

Join Now

Already a member? Log in here

Don’t Overlook Your Service Providers’ Cybersecurity Capabilities

Rachel Banks October 8, 2024

As the cybersecurity landscape grows more complex, it's essential for SMBs to critically evaluate the cybersecurity capabilities that their service providers can harness, either operating alone, or in conjunction with a cybersecurity partner

Free Membership Required

You must be a Free member to access this content.

Join Now

Already a member? Log in here

The CISO’s Myopia

Jordan Bonagura September 17, 2024

Fifteen years ago, I wrote an article entitled “The CSO’s Myopia.”…

a man wearing a white and black boxing glove

How Breach and Attack Simulation (BAS) Enhances Robust Cybersecurity Practices

Editors Desk September 10, 2024

Traditional methods of safeguarding information assets have become insufficient in today’s world of advanced cybercrime strategies. A more proactive approach is needed. This article explains the concept of breach and attack simulation (BAS).

Crossing the Compliance Chasm

Tarique Mustafa August 22, 2024

There is a wide gap between regulatory compliance mandates and practical implementation and enforcement that I like to call the “Compliance Chasm”. That chasm is defined by the activity to protect consumers and consideration for the economic and operational impact on business enterprises. Finding that balance requires thought, not the more popular whack-a-mole enterprise strategy that reacts to new compliance mandates.

The frequency and size of regulatory fines are rising for non-compliance. In January 2023, Meta was fined $418 million for GDPR violations by Meta properties’ Facebook and Instagram. Ireland’s Data Protection Commission follows up in May that same year with a $1.3 billion fine for additional violations. And those were just the latest fines imposed on web giants, that also included Google and Amazon.

The targets of those fines might be justified in saying compliance is an impossible task. By 2025 the volume of data/information created, captured, copied, and consumed worldwide is forecast to reach 181 zettabytes. Nearly 80% of companies estimate that 50%-90% of their data is unstructured text, video, audio, web server logs, or social media activities.

The Evolution of Ransomware: From Simple Scams to Advanced Cybercrime Strategies

Chris Storey August 6, 2024

Ransomware vulnerability is typically exacerbated by immature security programs, leaving organizations susceptible to a variety of infiltration tactics. Additionally, a lack of security culture within companies increases susceptibility to ransomware attacks.

Free Membership Required

You must be a Free member to access this content.

Join Now

Already a member? Log in here

Beyond NIS2 – why regulations should just be the starting point for building better protection

Chris Rogers July 25, 2024

NIS2 is an EU framework designed to provide “legal measures to boost the overall level of cybersecurity in the EU.” More specifically, it focuses on cybersecurity preparedness, crisis management and cooperation across member states as part of a harmonised “culture of security”.

Free Membership Required

You must be a Free member to access this content.

Join Now

Already a member? Log in here

white printer paper on brown wooden table

The Crucial Role of Regulatory Frameworks in Ensuring Robust Cyber Security

Editors Desk July 16, 2024

In order to understand the ever-changing regulatory landscape, we spoke to eight cybersecurity experts about the latest developments and how businesses should navigate their way through.

SEC Cybersecurity Disclosure Rules: Best Practices for Compliance

Michael Leach, Forcepoint corporate counsel July 13, 2024

It’s common practice that data security is cybersecurity today. As we continue to navigate through the digital transformation – and………more...

Free Membership Required

You must be a Free member to access this content.

Join Now

Already a member? Log in here

Enhancing Security Operations Efficiency

Editors Desk June 27, 2024

Today businesses face increasingly sophisticated cyber threats that necessitate robust security measures. One such innovative approach gaining traction is the Security Operations Center as a Service (SOCaaS). This model offers organizations the opportunity to enhance their security operations efficiently and effectively by leveraging external expertise and advanced technologies.