r3s-whitepaperlogo

State-by-State Breakdown of Cybersecurity Legislation

State-by-State Breakdown of Cybersecurity Legislation

As cybersecurity incidents, such as the Equifax data breach, continue to occur, states are beginning to recognize the need to impose cybersecurity requirements on companies…

Posted on April 2, 2018

GDPR: Simplifying the Data Protection Impact Assessment Requirement

GDPR: Simplifying the Data Protection Impact Assessment Requirement

The EU’s new General Data Protection Regulation (“GDPR”) introduces the concept of a Data Protection Impact Assessment (“DPIA”); defined as an analysis of the risks…

Posted on March 19, 2018

GDPR: Simplifying the Complex Vocabulary of the General Data Protection Regulation

GDPR: Simplifying the Complex Vocabulary of the General Data Protection Regulation

Approved by the European Union on April 14, 2016 and fully enforceable beginning May 25, 2018, General Data Protection Regulation (GDPR) is arguably the most…

Posted on March 5, 2018

Simple Guide to SOC for Cybersecurity

Simple Guide to SOC for Cybersecurity

In April 2017 the AICPA released the SOC for Cybersecurity examination. The report’s goal is to provide Companies a report type that is more appropriate…

Posted on February 12, 2018

Information Protection: A Practical Strategy for Identifying and Controlling Your Most Valuable Data

Information Protection: A Practical Strategy for Identifying and Controlling Your Most Valuable Data

Do you have an inventory of your Company’s most critical data and information assets? Do you know where those information assets are located throughout the…

Posted on January 29, 2018

GDPR: Simplifying the General Data Protection Regulation

GDPR: Simplifying the General Data Protection Regulation

Approved by the European Union on April 14, 2017 and fully enforceable beginning May 25, 2018, General Data Protection Regulation (GDPR) is arguably the most…

Posted on January 8, 2018

New York Cybersecurity Regulations – Path to Compliance

New York Cybersecurity Regulations – Path to Compliance

Written March 1, 2017, the New York Financial Services Cybersecurity Regulations have been developed to address significant cybersecurity threats to the financial services industry. The…

Posted on November 21, 2017

What SOC 2 Updates to COSO 2013 Mean for You

What SOC 2 Updates to COSO 2013 Mean for You

Beginning December 15, 2018, (with optional adoption beginning April 2017) all SOC 2 reports will be required to utilize the updated Trust Services Criteria. The…

Posted on June 16, 2017

IT Risk Assessment: Effective Identification and Selection of IT Audit Projects

IT Risk Assessment: Effective Identification and Selection of IT Audit Projects

Over the past few months I’ve had several leaders of Internal Audit departments ask: “How can we build cyber-security into our annual audit plan?” After…

Posted on September 2, 2016

How to Read a SOC Report (with Presentation)

How to Read a SOC Report (with Presentation)

Virtually all businesses rely on third party service providers. These third parties may range from common offerings like payroll and payment processing providers to specialized…

Posted on June 1, 2016