Peer-Driven Insights

Regulatory Compliance

Active Ambassadors in This Topic

JM Financial Services Ltd

Travel and Hospitality, 1k - 5k

Community Posts

View Results

Multiple environments32%

Segregation of duty45%

Authentication65%

QA testing48%

Key management28%

Security protocols29%

Encryption17%

Other (share details in comments)2%

View Results

Ransomware and multifaceted extortion33%

Business email compromise40%

Third-party vendor compromise (supply chain)17%

Cloud security incidents7%

I have no idea1%

View Results

Active Ambassadors in This Topic

Rathik Pathak

Community Posts

When will we see drones for human transportation?

Australia's government is considering a ban on ransomware payments — do you think that could be effective? Why or why not?

What are the hurdles to making cryptocurrency part of traditional economies?

What cryptocurrency regulations might we see in the near future?

How do you navigate regulatory uncertainty (e.g., data privacy and AI) when deploying digital tools in your organization globally?

AI deepfakes have cost the industry over $200M this year. As CISOs, can we scale detection fast enough, or is regulatory pressure the only way to drive adoption?

Will you continue to use Oracle now that it's being sued for violating users privacy?

Does your organisation have a formalised threat hunting programme? If so - what were the key drivers for you in setting one up and what made it successful?If not - what is stopping you from setting this up?

Which pitfalls—model bias, false positives/negatives, data quality, regulatory constraints—often impede AI-based security tools, and how can they be mitigated in a financial-services context?

What tools have been most helpful to gather evidence for a SOC 2 audit?

Among these controls that support continuous compliance in DevOps, which are important to adhere to? Select all that apply.

Can you share any best practices for managing compliance risks in a hybrid-cloud environment?

Which cybersecurity attack is currently your highest priority (to defend against)?

What regulatory changes are most impacting your budget planning currently? How have you adapted your cybersecurity budget to meet new compliance requirements, if at all?

What sorts of incident response changes are you implementing to satisfy regulatory requirements for incident reporting? How can organizations ensure their processes support compliance needs and create an audit trail that demonstrates that?

Community Posts

When will we see drones for human transportation?

Australia's government is considering a ban on ransomware payments — do you think that could be effective? Why or why not?

What are the hurdles to making cryptocurrency part of traditional economies?

What cryptocurrency regulations might we see in the near future?

How do you navigate regulatory uncertainty (e.g., data privacy and AI) when deploying digital tools in your organization globally?

AI deepfakes have cost the industry over $200M this year. As CISOs, can we scale detection fast enough, or is regulatory pressure the only way to drive adoption?

Will you continue to use Oracle now that it's being sued for violating users privacy?

Does your organisation have a formalised threat hunting programme? If so - what were the key drivers for you in setting one up and what made it successful?If not - what is stopping you from setting this up?

Which pitfalls—model bias, false positives/negatives, data quality, regulatory constraints—often impede AI-based security tools, and how can they be mitigated in a financial-services context?

What tools have been most helpful to gather evidence for a SOC 2 audit?

Among these controls that support continuous compliance in DevOps, which are important to adhere to? Select all that apply.

Can you share any best practices for managing compliance risks in a hybrid-cloud environment?

Which cybersecurity attack is currently your highest priority (to defend against)?

What regulatory changes are most impacting your budget planning currently? How have you adapted your cybersecurity budget to meet new compliance requirements, if at all?

What sorts of incident response changes are you implementing to satisfy regulatory requirements for incident reporting? How can organizations ensure their processes support compliance needs and create an audit trail that demonstrates that?

Does your organisation have a formalised threat hunting programme? If so - what were the key drivers for you in setting one up and what made it successful?

If not - what is stopping you from setting this up?

Does your organisation have a formalised threat hunting programme? If so - what were the key drivers for you in setting one up and what made it successful?

If not - what is stopping you from setting this up?