We all realize that our security jobs are much more than just specifying technology and controls, protecting and defending our infrastructure, and investigating incidents. Over the last year privacy has been mainstreamed with GDPR going into effect, California passed its own version of GDPR, and with 40 + privacy laws in the US, and more just over the horizon. In addition, some of the questions around cloud and privacy have been addressed with the Cloud Act (which gives government agencies direct access to consumer information in the cloud). We also see more government export controls looming on the horizon. These controls will impact cyber tools and techniques and our ability to test and mitigate vulnerabilities while complying with laws and regulations.
While we may not have all the answers, we will review the current state of our world. To do this, we will bring in legislative and regulatory experts to discuss the changes and some of the directions we see looming.
Some of the questions we will try to address are:
what happens when these laws and regulations conflict with one another
what happens when these controls impact our ability to do our job
can we mitigate any of our liability by just getting insurance.
Michael Angelo, Chief Security Architect, Micro Focus | NetIQ
Maher Shomali, Partner, Thomsen & Burke LLP
Randy Sabett, Cooley, LLP
Lisa Angelo, Attorney, Cyber Law & Insurance
Letitia Seglah, Investment Banker turned Fintech industry expert, and Ryan Ross discuss how the European Commission is thinking about Blockchain, Regulations, and Risks.Read more >
Do you really know your customer? Customer Due Diligence after the Money Laundering Regulations 2017 and the Criminal Finances Act 2017
* How do you ensure you conduct a thorough search for, and provide ongoing monitoring of, adverse information on existing and potential clients?
* How do you prove you are conducting compliant CDD?
It’s 2018 and May 25th , aka G-Day (GDPR day), is rapidly approaching. But did you know that even though the GDPR is a European Union regulation, it does impact organizations worldwide, including Asia.Read more >
As a follow-up to our April 4th, 2018 webinar ("Anti-Money Laundering Regulation of Digital Assets"), Alma Angotti, Managing Director and Global Investigations & Compliance Practice Co-Leader and Gino Soave, Director at Navigant; and Martine Beamon and Jai Massari, Partners at Davis Polk & Wardwell LLP will examine the impact of the federal securities laws on digital assets.
Topics to be covered include:
-- The SEC’s jurisdiction over digital assets and activities involving digital assets
-- The recent focus on the role of intermediaries and gatekeepers in digital asset markets
-- The state of play of enforcement involving digital assets and how the SEC’s approach can guide development of an effective compliance program
Summer is quickly approaching and unfortunately, many organizations let the GDPR deadline slip away. If you are one of the thousands of organizations that missed the deadline, then this is the webinar for you. Download this on-demand Webinar, to find out from experts on GDPR means to US companies and an action plan to automate your compliance and address this global regulation.Read more >
It is not easy launching a startup business in fintech! Increasing regulations and compliance requirements add to the challenges of running and growing a successful business. However, good risk management and compliance can be a business enabler.
We will explore the startup journeys of three different fintech startups in insurtech, paytech and wealthtech. We will discuss the founders' experience in managing the diverse risks that they face in running their respective businesses and how they navigate through the regulatory environment.
Moderator: Lionel Hackett, CEO & Founder at WiseCrowd
Janthana Kaenprakhamroy, CEO and Founder at Tapoly
Gabriele Musella, CEO & Founder at Paylinko
Dann Bibas, Co-Founder at Fountain
The retail industry is committed to complying with the National Minimum Wage (NMW) regulations. But we know that the regulations are complex and understanding how they work in practice can be difficult.
Falling foul of the regulations can result in:
Repayments for up to 6 years (including current and ex-employees) increased to reflect the prevailing NMW rates; penalties of up to 200% of the underpayments identified; and public naming and shaming by the Department for Business, Energy & Industrial Strategy.
It is not easy to spot where and why breaches can occur, or how to remedy them. PwC have a specialist team who have a great deal of experience in assisting retailers to identify and manage potential compliance risks around NMW. This is based on our understanding of the technical aspects of the regulations and also our practical experience of the approach taken by HMRC when they perform their audits.
The webinar that we are running in February will take you through what is involved in a NMW audit and the top areas that HMRC will focus on during an audit. We will suggest some immediate actions and take questions.
In this module Alex will discuss the various waves of regulation that have impacted investment management firms and pension funds. Alex then digs deeper into the changes that MiFID 2 has brought to the industry.Read more >
GDPR (General Data Protection Regulation) is a new data regulation that requires all companies that process data on EU residents to comply with strict policies. In scope are customers, data on behalf of customers, employees, vendors, or contractors. Many US companies are just learning of GDPR or understanding that, despite perhaps not directly doing business in the EU, they may unexpectedly be required to put substantial safeguards into place to be compliant. The kicker is, companies have only until May 25th, 2018 to put these safeguards into place.
In this webinar, we’re joined by special guest, Jodi Daniels, Privacy Consultant and Founder of Red Clover Advisors, and Andrew Richardson, Elite SEM Director of Analytics, who will walk us through everything you need to know regarding:
- GDPR (General Data Protection Regulation)
the relationship between PII (Personally Identifiable Information) and GDPR
- how you and your company will be affected, even if you don’t directly do business in the EU
- what actions you and your company should be taking in order to avoid high penalties
Mortgage Club September 2017
FUTURE REGULATION IMPACT (FCA COMPETITION REVIEW)
On 25 May 2018, the European General Data Protection Regulation (GDPR) will come into effect – and while it is an European Union’s regulation, it may still affect your organisation here in the Asia Pacific.
But how do you know if your organisation needs to comply with the GDPR, and what is required for compliance? With top level fines of over $20 million for non-compliance, it is better to be safe and sure than sorry.
Join us at our webinar as we discuss:
• How to find out if your company will be impacted by the GDPR
• What is needed to comply with the GDPR
• How the GDPR will be enforced in Asia Pacific
• Capitalising on the GDPR to improve your business
• Real-life issues faced by organisations and how technology can help fix them
Don’t be caught unaware by the GDPR. Register for our webinar today and learn how Symantec technologies help to facilitate GDPR compliance.
We will provide an update on cross-border derivative issues including recent developments in the US and the EU. Among the topics to be considered are:
An update on the rollout of the margining rules relating to uncleared derivatives in both the US and the EU;
Ongoing implementation of clearing requirements for OTC derivatives;
What is the current position in relation to exchange trading of derivatives – in particular, what effect will Mifid II have in the EU?
Where are we on substituted compliance/equivalence as between the US and the EU?
Will Brexit and/or the new Trump administration have any effect on the international framework for derivative regulation?
While the launch of PSD2 is approaching fast, there is still some ground to cover to turn this regulation into reality.What are the challenges and opportunities and what is required to make PSD2 work?
Marijke Koninckx, Product Marketing Manager at FIS, discusses how PSD2 transforms the relation between banks and their customers into a new 3-way relationship.
How should banks manage this new 3 way relationship?
What are the implications and what functional and technical issues need to be addressed to be successful?
Guidance to achieving compliance with new EU regulations
With the EU Regulation 611/2013 for ISP/TelCo operators coming into force, the European regulatory framework is giving more precise guidance on the required security measures. The key objective of the EU Regulation is to limit data breaches and incidents.
Measures that limit data breaches and incidents are central to the EU regulations, when applied correctly by an organizations security teams.
Encryption is the most important recommended measure to achieve compliance and allows the data to become unintelligible. With Encryption organisations can reduce the residual privacy risks to a negligible level.
Extended EU regulations with a wider target are expected: The new EU Data Protection Regulation and the Directive on Networks & Information Security (NIS) are both pending EU final approval to come into force.
Attend this webinar and discover how to keep your customers data safe and reduce the risk of having to notify a data breach to your customers under the new EU regulations.
Dramatically shift data handling practices to avoid steep financial penalties and potentially intrusive enforcement actions. The European Union (EU) General Data Protection Regulation (GDPR) will go into effect in May 2018, which will require all businesses, regardless of their location to make changes to their oversight, technology, processes and people to adequately protect the personal data of EU residents.
It is a big undertaking, and businesses around the globe must kick-off their compliance strategies immediately in order to comply by the deadline.
Join Enza Iannopollo, Analyst at Forrester Research, and Rex Ahlstrom, BackOffice Associates Chief Strategy and Technology Officer, in this webinar as they discuss:
•A brief overview of the GDPR
•Recommendations on building a GDPR compliance roadmap and prioritizing initiatives
•Suggestions for executing a successful compliance strategy
The Gemalto’s Breach Level Index reported 1.4 billion data records compromised worldwide in 2016, up 86% from 2015. Closer to home, there were 44 & 16 voluntarily reported breaches in Australia and New Zealand respectively. With the new Privacy Amendment (Notifiable Data Breaches) Act 2017 in Australia, these numbers are expected to increase dramatically as organisations are required to declare any “eligible data breaches”.
Navigating these regulations such as the Australian Privacy Act and European General Data Protection Regulation (GDPR) and the impact they will have can be daunting. Organisations must start planning ahead to mitigate the potential risks of being non-compliant. The implications of a data breach can go beyond compliance. In 2014, the Target breach had a massive impact on the company’s brand reputation, while last year’s announcement of the Yahoo! data breach cost the company nearly $1.7 billion in stock market value.
During this webinar, Helaine Leggat, an legal expert in data protection regulations will discuss the Australian Privacy Act Amendment in detail, what it means for businesses in Australia and internationally. Graeme Pyper, Regional Director at Gemalto will provide recommendations to help prepare for the 2018 deadline. We will share industry best practices and methodologies companies can evaluate to simplify a government audit process. Join our experts to ask questions and learn more about:
•The local and global government data privacy regulations (Australia and Europe)
•Gauging the true cost of a data breach and how to reduce the scope of risk
•Understanding privacy by design throughout business
•Strategies for simplifying operations for regulation and internal audits
•Determining current industry compliance, which may be applicable to the APA and GDPR
The EU General Data Protection Regulation (GDPR) will have an impact both in the EU and around the world. Organizations that act now and have a clear data protection plan will have a competitive edge helping them to build trusted customer relationships and drive business growth.
Join Forrester and TITUS for a discussion about the EU General Data Protection regulation. You will gain insight into:
The basics of the new EU GDPR
Building data protection into business process and product (Privacy by Design)
Creating effective data security policies to protect personal data
Educating and empowering employees to assist with data protection
The New York State Department of Financial Services new Cybersecurity Regulations went into effect on March 1. These regulations, which cover financial services companies licensed by or operating in New York State, are more comprehensive and prescriptive than other cybersecurity regulations to date, and are most likely a taste of regulations to come. In particular, they introduce requirements around application security that are more specific and wide-ranging than most. What do financial services companies need to know about these regulations?
This webinar will get those affected by these requirements up to speed on:
> What the new regulations entail
> How best to approach these requirements
> How Veracode can help with compliance
Since 13 June 2016, European Union Member States applied new rules for placing radio equipment on the European market and putting them into service. From 13 June this year, all radio equipment being placed on the market or put into service must comply with the new Radio Equipment Directive (RED), 2014/53/EU. ETSI’s Harmonised Standards are often the preferred method of demonstrating compliance with European radio regulations. This webinar will explain how industry can access the EU market using ETSI Harmonised Standards, provide an update on the status of availability of ETSI’s Harmonised Standards, and indicate alternative paths in the cases where Harmonised Standards are not yet available.
Dr. Michael Sharpe is the Director of Spectrum and Equipment Regulation at ETSI. He is responsible for ensuring effective co-operation of ETSI’s technical activities with the work of key regulatory bodies and partner standards bodies at the National, European and Global level. His current priorities include working with the European Commission to ensure the smooth introduction of the Radio Equipment Directive, and the continuing close co-operation with CEPT and the Commission Radio Spectrum Unit to ensure that ETSI Harmonised Standards and Regulations on radio frequency use are developed in a co-ordinated and effective manner.