Receive articles and resources from the information risk management experts at FoxPointe.
This article was written by James Farr, Consulting Manager. The State University of New York (SUNY) has introduced an updated Information Security Policy (ISP) aimed at creating a cohesive cybersecurity framework across all its campuses. With the rise in cyber threats and increasing regulatory demands, this policy provides a structured...
This article was written by James Normand, Security Analyst. As organizations operate and grow, so too does the amount of data that they’re responsible for. Properly managing and safeguarding organizational and customer data can help ensure compliance with GDPR, CCPA, GLBA, and regional laws. Failure to implement and maintain secure...
This article was written by Rebecca Renna, Consulting Manager, Fox Pointe Solutions – a Division of The Bonadio Group The purpose of a Compliance Program in any industry is to ensure that an organization is following all applicable laws, regulations, and ethical practices. The laws and regulations governing compliance are...
The cyber-threat landscape has evolved dramatically over recent years, becoming more sophisticated and unpredictable. Organizations worldwide face an array of challenges—from advanced persistent threats and ransomware attacks to insider threats and vulnerabilities introduced by remote work. In this context, traditional security models that rely on perimeter defenses are no longer...
This article was written by Brendan Horton, Senior Consultant. In today’s dynamic and increasingly complex cyber landscape, organizations need a holistic, strategic approach that brings together people, processes, and technology. At FoxPointe Solutions, we understand that effective cybersecurity is about more than technical solutions; it’s about integrating expertise, structured processes,...
This article was written by Paul Mayer and Heather Brownson. The past two years have been very eventful for Compliance Professionals, starting with changes to the Office of Medicaid Inspector General’s (OMIG) Title 18 NYCRR Part 521 regulations. 18 NYCRR Part 521 was first made effective in 2009 and the...
Cyber liability insurance can be a critical weapon in your war against cyber criminals. We often get asked by our clients, “Do I really need cyber liability insurance?” It is often prefaced with the comment ‘I have general business insurance coverage and a really good IT team.’ The short answer...
This article was written by Emily Mosack, Analyst. Insider threats pose a significant risk to organizations, involving individuals with access to critical systems and data. These threats can come from malicious insiders intent to cause harm, careless employees who unknowingly compromise security, or those whose credentials have been stolen by...
This article was written by James Farr, Consulting Manager & Jack Hunter, Intern. Multi-Factor Authentication (MFA) is a comprehensive approach to authenticating users, relying on two or more credentials to verify an individual’s identity. Typically, these credentials are chosen to be: Something you know (i.e., a memorized password) Something you...
This article was written by Kate Gottermeier, Senior Consultant at The Bonadio Group. Introduction Fraud risk mitigation is crucial in business operations to safeguard assets, maintain financial integrity, and uphold the trust of stakeholders. The impact of fraud can be devastating, leading to significant financial losses, reputational damage, and legal...
