Regulation Compliance: Comply with cybersecurity regulations
Companies in regulated industries must comply with cybersecurity regulations, yet also keep their operations lean and competitive. We help you achieve both.
Organizations in financial services, healthcare, energy and other regulated industries must demonstrate compliance with regulations including Sarbanes–Oxley, HIPAA, FINRA, PCI and more. In such an environment, you know how important it is to get up to speed with compliance quickly, and to show improvement in adherence from one audit to the next.
INVESTMENT BANKS, BROKER/DEALERS, MUTUAL FUNDS, INVESTMENT ADVISORS
Regulator/Regulation such as Sarbanes Oxley (SOX), NASD 2210, 3010/3110, SEC 17-a/34, NYSE 342, 372, 440, require that IM defined as electronic communication "book and record," required to be logged, audited and archived for 3 years.
Regulator/Regulation such as Sarbanes Oxley (SOX), NASD 2210, 3010/3110, SB1386 in CA, Gramm Leach Bliley Act (GLB), USA Patriot Act (USPA), FDIC, require that IM defined as electronic communication "book and record". GLB requires security of customer information. USPA requires record retention of suspicious communications associated with money transfer and laundering. FDIC provides guidance on security and management of IM. FDIC provides guidance on security and management of IM.
Government regulators are taking the issue of compliance more seriously then ever before, imposing harsh penalties on those that don't comply -- from litigation and massive fines, to in some cases, imprisonment. DOD Directive 5015.2 sets standards for records retention, including IM.
Life Sciences / Healthcare
HOSPITALS, LIFE SCIENCE INSTITUTES, HEALTHCARE CENTERS
Health Insurance Portability and Accountability Act (HIPAA) requires that retention of patient records during clinical trials by med/pharma companies and privacy of patient records, including patient information shared over IM.