The Board of Governors of the Federal Reserve System has recently indicated it may move forward with enhanced cybersecurity standards that had previously been floated by the Board, the Office of the Comptroller of the Currency (OCC) and the Federal Deposit Insurance Corporation (FDIC) back in 2016. Specifically, in October 2016, the Board, the three entities issued a joint advance notice of proposed rulemaking (ANPR) on enhanced cybersecurity standards before deprioritizing it in 2017. While the OCC and the FDIC withdrew their ANPRs earlier this Spring, the Board may revive the issue this coming Fall.
The recent data breach of India-based technology services provider Wipro serves as yet another reminder that technology or outsourcing service providers are high-priority targets for cyberattacks. In “Managing Risk in Light of the Wipro Data Breach,” colleagues Meighan E. O’Reardon, Andrew Caplan, Mia Rendar and
In what is a challenging sector—especially following recent revelations over “secretive” government-awarded post-Brexit contracts—the UK Government recently issued new guidance on outsourcing aimed at improving government procurement and delivering better public service. Released on February 20, 2019, the “Outsourcing Playbook” targets improvements in how government works with industry and delivers better public services, but there are lessons to be learned for the private sector, as well.
Financial institutions regulated by the New York Department of Financial Services (DFS)—referred to in this post as “Covered Entities”—should by now be well familiar with the department’s sweeping cybersecurity regulation, 23 NYCRR 500, that became effective on March 1, 2017. The regulation delves into a level of detail (e.g., multi-factor authentication and encryption requirements) and requires a level of senior level attention (e.g., annual attestation of compliance, signed by the Board of Directors or a Senior Officer) heretofore unseen in U.S. federal or state regulations.
When it comes to artificial intelligence, a lack of transparency in process and bad data to begin with are two of the issues most hampering the embrace by the boardroom. In AI: Black boxes and the boardroom, colleagues Tim Wright and Antony Bott examine how the resulting lack of trust can make companies wary of the AI technology despite its many potential benefits, and some basic steps one can take to alleviate those concerns.
Agile is emerging as the prevailing methodology for software development. According to the 12th Annual State of Agile Report, a survey conducted by VersionOne and published earlier this year, 97% of respondent organizations practice Agile development methods, while 52% reported that more than half of the development teams in their organizations are following Agile practices.
Digital advertising is exploding. In just the first six months of 2017 alone, internet advertising revenues exceeded $40 billion. Promoted ads are dominating social media platforms like Facebook and Twitter, and it is impossible to surf the internet or use mobile apps without having to watch or click through a myriad of dynamic ads to get to the underlying content. Why is this? Because digital advertising works.
Outsourcing service providers have long been in the practice of bringing highly skilled employees from India and other locations to work with local businesses within the United States. Outsourcers such as Wipro, TCS and Infosys are some the largest petitioners of H-1B visas, the high-skilled work visa favored by the tech industry. In order to bring the most value to customers, service providers largely rely on getting work visas for Indian tech workers so they can consult with U.S. businesses.
At a recent seminar discussion on smart buildings, I was reminded of the Mr. Robot episode where the general counsel of a multinational corporation, which is being targeted by a hacker group, has her futuristic apartment hacked. In case you haven’t been watching, Mr. Robot is USA Network’s psychological thriller about a young programmer who works as a cybersecurity engineer by day but by night is a vigilante hacker.