Official UC blog

December 2023 Newsletter

Written by Matt H. | Dec 15, 2023 8:07:41 PM
Ethical utilization, equitable distribution, and safeguarding of creative intellect within the AI sector.
 
Unified Compliance Newsletter
December 2023

 

Newsletter Highlights

  • Creative Commons or Federated Data License?
  • AI Isn't All About Automation
  • Newsletter: Read Past Editions
  • Upcoming Documents
  • Authority Documents
  • Suggestions/Comments: email us

Creative Commons or Federated Data License?

Data is the cornerstone of ingenuity in the swiftly advancing realm of artificial intelligence (AI). Our users are spearheading a critical reassessment of data governance in AI, advocating for a Federated Data License. This license is a testament to the ethical utilization, equitable distribution, and safeguarding of creative intellect within the AI sector. See the license.

AI Isn't All About Automation

With the release of ChatGPT and all the AI tools that quickly followed it, we've been bombarded with "We are going to automate..." 

There's automation, and then there's automation. Let's review the levels and see how they apply to Governance, Risk, and Compliance (GRC) or Security Operations (SecOps). Review the levels.

Newsletters: Read Past Editions

Want to read the news released about Unified Compliance? All released newsletters are posted the same day they are emailed. Check out post-UCF news. Read our Newsletters.

Upcoming Documents

The UCF team has plans to map the following Documents:

  • SOC 2, 2022 [AD 3647]
  • Australian Government Information Security Manual, September 2023
  • GAO Yellow Book
  • OWASP Application Security Verification Standard 4.0.3
  • Code of Virginia Title 59.1, Chapter 53, Consumer Data Protection Act, April 11, 2022

Authority Documents

What's new and popular in the CCH?

See the list below for Authority Documents published since our last newsletter.

Which Authority Documents are most important to you?

Submit a request.

What are the most accessed AD's monthly?

 

This month's list of the 50 most selected Authority Documents, including how many groups and initiatives each Authority Document has been assigned!

Acquisition or Sale of Assets

  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5 [AD 3241]
  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5.1.1 [AD 3687]

Configuration Management

  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5 [AD 3241]
  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5.1.1 [AD 3687]

Cybersecurity

  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5 [AD 3241]
  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5.1.1 [AD 3687]
  • Montana Consumer Data Privacy Act 2023 [AD 3680]
  • New York Codes, Rules and Regulations, Title 23, Chapter 1, Part 500 Cybersecurity Requirements for Financial Services Companies, Second Amendment [AD 3686]
  • Regulation (EU) 2022/2554 of the European Parliament and of the Council of 14 December 2022 on digital operational resilience for the financial sector and amending Regulations (EC) No 1060/2009, (EU) No 648/2012, (EU) No 600/2014, (EU) No 909/2014 and (EU) 2016/1011 (Text with EEA relevance) (DORA) [AD 3668]

Human Resources

  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5 [AD 3241]

IT Security

  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5 [AD 3241]
  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5.1.1 [AD 3687]
  • Information Security Assessment, Version 5.1 (TISAX) [AD 3670]
  • Montana Consumer Data Privacy Act 2023 [AD 3680]
  • New York Codes, Rules and Regulations, Title 23, Chapter 1, Part 500 Cybersecurity Requirements for Financial Services Companies, Second Amendment [AD 3686]

Monitoring and Reporting

  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5 [AD 3241]
  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5.1.1 [AD 3687]

Operational and Systems Continuity

  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5 [AD 3241]
  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5.1.1 [AD 3687]

Operational Management

  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5 [AD 3241]
  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5.1.1 [AD 3687]

Physical Security

  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5 [AD 3241]
  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5.1.1 [AD 3687]

Physical Security

  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5 [AD 3241]
  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5.1.1 [AD 3687]

Privacy

  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5 [AD 3241]
  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5.1.1 [AD 3687]
  • Delaware Code, Title 6, Subtitle II, Chapter 12D. Delaware Personal Data Privacy Act [AD 3677]
  • Digital Personal Data Protection Act, 2023, August 11, 2023 [AD 3679]
  • Montana Consumer Data Privacy Act 2023 [AD 3680]

Product Design and Development

  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5 [AD 3241]
  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5.1.1 [AD 3687]

Records Management

  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5 [AD 3241]
  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5.1.1 [AD 3687]

Risk Management

  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5 [AD 3241]
  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5.1.1 [AD 3687]

Third Party and Supply Chain Management

  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5 [AD 3241]
  • Security and Privacy Controls for Information Systems and Organizations, NIST SP 800-53, Revision 5.1.1 [AD 3687]

Thanks for Reading our newsletter. If you have any suggestions or comments, please, email us.

Best Wishes,

Dorothy Hunt

Manager, Customer Success
707.694.3077
dhunt@unifiedcompliance.com

Unified Compilance, 10161 Park Run Dr. Suite 150, , Las Vegas,NV,89145,USA,

Unsubscribe Manage Preferences

Copyright © 2021 UnifiedCompliance.com All Rights Reserved.