The latest Security podcast features Arti Lalwani, Risk Management and Privacy Knowledge Leader at A-LIGN, who discusses her career journey through auditing, risk and data privacy.

Data privacy legislation has popped up across the United States, largely regulated by individual states. The California Privacy Rights Act (CPRA) has wide-reaching effects for U.S. enterprise organizations.

Security teams have an unprecedented number of assets to inventory, manage and secure across a cloud-based organization, according to a new JupiterOne report. 

Organizations can improve their security profile by implementing a plan that includes best practices and rules for compliance along with the technology to implement it. 

The White House urged private organizations to bolster their cybersecurity defenses, as intelligence suggests Russia is exploring options for potential cyberattacks to target U.S. critical infrastructure.

Identity and access management company Okta is investigating a possible data breach after ransomware group Lapsus$ claimed to have hacked the company.

Ransomware as a service (RaaS) affiliate group AvosLocker has targeted a number of victims across multiple critical infrastructure sectors. Here are a few mitigation strategies organizations can implement. 

Ian Thornton-Trump, Chief Information Security Officer (CISO) at Cyjax, and Philip Ingram, CEO of Grey Hare Media, take a closer look at the Russian invasion of Ukraine through the lens of conflict in the Middle East in the tenth episode of The Cybersecurity and Geopolitical Podcast.

Retail security leaders play an important role regarding business continuity. Incorporating SASE and SD-WAN can help businesses stay resilient in a changing retail environment.

There isn’t a silver bullet to consumer data privacy; different organizations are at different stages of privacy maturity. However, there are four steps organizations can take to advance their data privacy program maturity.