Tag Archives: cybersecurity

FDA Issues Draft Guidance on Management of Cybersecurity in Medical Devices

The FDA issued a new Draft Guidance today to ensure medical devices – an increasing potential target for hackers – are better protected from unauthorized digital access.

Read more

Read full article

NIST Seeks Comments on Cybersecurity Standards For Patient Imaging Devices

Our colleague  at Epstein Becker Green has a post on the Health Law Advisor blog that will be of interest to our readers in the technology industry: “NIST Seeks Comments on Cybersecurity Standards For Patient Imaging Devices.”

Read more

Read full article

NIST Seeks Comments on Cybersecurity Standards For Patient Imaging Devices

The National Institute of Standards and Technology (“NIST) has announced that it will be seeking industry input on developing “use cases” for its framework of cybersecurity standards related to patient imaging devices. NIST, a component of the Department of Commerce, is the agency assigned to the development and promulgation of policies, guidelines and regulations dealing with cybersecurity standards and best practices.  NIST claims that its cybersecurity program promotes innovation and competitiveness by advancing measurement science, standards, and related technology in ways that enhance economic security and quality of life. Its standards and best practices address interoperability, usability and privacy continues to be critical for the nation. NIST’s latest announcement is directed at eventually providing security guidance for the healthcare sector’s most common uses of data, inasmuch as that industry has increasingly come under attack.

Read more

Read full article
ILN Today Post

Data privacy and cybersecurity attorney Colin Battersby joins McDonald Hopkins

DETROIT– Colin M. Battersby has joined McDonald Hopkins, a business advisory and advocacy law firm, as counsel in the firm’s national Data Privacy and Cybersecurity Practice Group. He is based in Detroit.

Read more

Read full article
ILN Today Post

McDonald Hopkins nominated for Cyber Law Firm of the Year

DETROIT– McDonald Hopkins, a business advisory and advocacy law firm, has once again been nominated by Advisen as a finalist for their 2018 Cyber Risk Awards in the category of Cyber Law Firm of the Year. The firm’s national Data Privacy and Cybersecurity Practice, led by co-chairs James J. Giszczak and Dominic A. Paluzzi, was previously nominated as a finalist for Advisen’s Cyber Risk Awards in 2017 and 2015 in the categories of Cyber Law Firm of the Year and Cyber Risk Pre-Breach Team of the Year, respectively.

Read more

Read full article

It’s a New Year: Time For a Data Security Checkup

The start of a new year is a great time to check your company’s overall cybersecurity and privacy health and fix any problems early in the budget cycle. Below are some key questions to ask your information technology, human relations, and legal personnel to ensure your company’s data security and privacy policies will keep you safe throughout 2018. 1. Does your company have a written information security plan (WISP) that includes all of the following:

Read full article

2017 Wrap-Up & Heads-Up: The Top Workforce Management Issues of 2017 Continue Reading…

As 2017 comes to a close, recent headlines have underscored the importance of compliance and training. In this Take 5, we review major workforce management issues in 2017, and their impact, and offer critical actions that employers should consider to minimize exposure:

  1. Addressing Workplace Sexual Harassment in the Wake of #MeToo
  2. A Busy 2017 Sets the Stage for Further Wage-Hour Developments
  3. Your “Top Ten” Cybersecurity Vulnerabilities
  4. 2017: The Year of the Comprehensive Paid Leave Laws
  5. Efforts Continue to Strengthen Equal Pay Laws in 2017
Read full article

New Article: Managing Employee Benefits in the Face of Technological Change

Our colleague Michelle Capezza of Epstein Becker Green authored an article in Confero, titled “Managing Employee Benefits in the Face of Technological Change.”

Following is an excerpt – click here to download the full article in PDF format:

There are many employee benefits challenges facing employers today, from determining the scope and scale of traditional benefits programs to offer that will attract, motivate and retain multigenerational employees, to embracing new models for defining and providing benefits, while simultaneously managing costs. In the midst of these challenges is the wave of technological change that is impacting all areas of the workplace, including human resources and benefits. In recent years, many new technological tools have emerged to aid in the administration of benefit plans, delivery of participation communications, as well as provide education and advice. These tools often require collection of sensitive data or allow employees to provide personal information in an interactive environment, such as:

Read full article
ILN Today Post

Proposed resolution on cybersecurity

On September 19, 2017, the Central Bank of Brazil published Public Notice No. 57/2017, announcing a resolution on the implementation by financial institutions of cybersecurity policy and the requirements for contracting services data processing and storage, and cloud computing.

The proposal provides for the minimum content of the cyber security policy and establishes requirements for contracting data processing and storage services and cloud computing, including minimum contractual requirements. In addition, requirements regarding the handling of incidents related to the cyber environment are established. Institutions should also develop actions to share information about these incidents.

Read More

Read full article

New York State Issues New Cybersecurity Regulations Following Equifax Breach

New York State has issued proposed regulations extending existing regulations requiring banks and other financial institutions to have in place a comprehensive cybersecurity program to credit reporting agencies.  Governor Mario Cuomo announced that “The Equifax breach was a wakeup call and with this action New York is raising the bar for consumer protections that we hope will be replicated across the nation.”

Under the proposed regulations, every consumer reporting agency that assembles, evaluates or maintains a consumer credit report on NYS consumers must register with the State by February 1, 2018 and have in place a written cybersecurity program by April 4, 2018. The program must identify and assess internal and external cybersecurity risks that may threaten non-public information, including personally identifying consumer information. The program must include provisions that address data governance and classification, asset inventory and device management, access control and identity management, systems and network security and monitoring, as well as other mandated areas.

Read full article