ThomsonReuters

MARCH 3, 2022

The following groups may be treated as distinct groups of “similarly situated” individuals for purposes of the HIPAA nondiscrimination rules: (1) groups of participants based on a bona fide employment-based classification, such as length of service or full-time vs. part-time status; (2) participants as a separate group from beneficiaries (e.g.,

105

105

Audit Board

APRIL 25, 2022

If you’ve been wondering where security practices and compliance requirements align and where they diverge, you’re not alone. Security and compliance have synergies, but they aren’t the same, and it can be challenging to tease them apart. What Is Security? Here are some common categories for security tools: .

Compliance 90

Compliance Technology 90

Audit Board

JUNE 15, 2022

27002 includes generic information security controls as well as implementation guidance for organizations looking to implement the 27001 Information Security Management Systems (ISMS) standard. What Are the Changes to ISO/IEC 27002:2022 vs ISO/IEC 27002:2013? The 11 new controls are as follows: Physical security monitoring.

Compliance 52

Compliance Start-ups Technology 52

Audit Board

SEPTEMBER 6, 2023

Rise in supply chain security incidents across competitors, representing an emerging threat for the organization. Emerging regulatory pressures from the federal government or privacy regulators. Good KPIs are a measurement of the company’s own performance against key security metrics. Number of overdue action plans by team.

Compliance 52

Compliance Technology Marketability 52

Audit Board

DECEMBER 1, 2022

Cyber/data security and talent remain the top risks facing organizations, with over 80% of respondents seeing cyber/data security as a “very high” or “higher than average” vulnerability, and nearly three of four responding the same for talent. Audit Effort vs. Risk Level: A Troubling Lack of Alignment.

Start-ups 52

Start-ups Technology 52