Blog

AI Regulations: OpenAI Calls on EU to Review, Simplify AI Rules

By / Blog / , ,

OpenAI urges the EU to simplify AI regulations to enhance innovation and competitiveness, warning complexity may drive investment to non-democratic regions. They propose a unified pro-growth strategy, tripling computing capacity, and training 100 million Europeans in AI by 2026. OpenAI advocates for synergy between regulations and growth initiatives to ensure EU leadership in AI, emphasizing the need for urgent action against competing autocratic investments while also promoting responsible AI development aligned with European values.

https://www.pymnts.com/artificial-intelligence-2/2025/ai-regulations-openai-calls-on-eu-to-review-simplify-ai-rules/

EU AI Act Technical Standards Delayed Until Next Year

By / Blog / , ,

EU AI Act Technical Standards Delayed: The EU's AI Code of Practice drafting has been delayed due to alignment issues with copyright law and risk assessments. The final draft's delivery has been postponed to May, while technical standards may extend into 2026, impacting compliance timelines. National regulators must be established by August 2026.

https://www.pymnts.com/cpi-posts/eu-ai-act-technical-standards-delayed-until-next-year/

UK Cybersecurity Reform Planned Changes in the Cyber Security and Resilience Bill

By / Blog / , ,

UK Cybersecurity Reform: Upcoming Cyber Security and Resilience Bill updates UK’s NIS Regulations 2018 to enhance cybersecurity in line with EU NIS2 Directive. Key changes include expanding NIS scope to include Managed Service Providers, establishing Designated Critical Suppliers, and incorporating data centres. Enhanced obligations will cover supply chain responsibilities, technical requirements, and stricter incident reporting timelines. The Government will gain greater enforcement powers, including directive authority over entities and regulators, alongside new fee structures for NIS registration. The Bill aims for improved cybersecurity readiness and alignment with international standards, with publication expected in 2025.

https://www.twobirds.com/en/insights/2025/uk/uk-cybersecurity-reform-planned-changes-in-the-cyber-security-and-resilience-bill

16 Ways CISOs Can Lead the Charge on Ethical, Compliant AI Usage

By / Blog /

CISOs play a vital role in guiding ethical and compliant AI use through governance, transparency, and collaboration across departments. Key strategies include setting clear governance standards, embedding security and ethics in AI development, owning oversight, promoting innovation, enforcing policies, designing trust, and educating staff on responsible AI usage.

https://www.fastcompany.com/91315938/16-ways-cisos-can-lead-the-charge-on-ethical-compliant-ai-usage

C-suite Disconnect on Cybersecurity Threatens Business Value and Resilience, EY Study Finds

By / Blog /

C-suite disconnects on cybersecurity endanger organizations' resilience and value, with cybersecurity leaders (CISOs) more aware of threats than other executives. A recent EY study reveals significant gaps in perception regarding threat sources and the effectiveness of security measures, underscoring the need for a unified cybersecurity strategy. While current cybersecurity investment levels are rising, there's a call for elevated CISO roles and strategic alignment of investments to foster a culture of cybersecurity awareness within organizations.

https://www.ey.com/en_us/newsroom/2025/04/c-suite-disconnect-on-cybersecurity-threatens-business-value-and-resilience-ey-study-finds

Cybersecurity World On Edge As CVE Program Prepares To Go Dark

By / Blog /

CVE program's future is uncertain as MITRE's DHS funding expires April 16, 2025, risking global cybersecurity standards and coordination. Without renewal, new vulnerabilities won't be tracked, jeopardizing response efforts and disrupting security protocols, potentially leading to a national security risk. Urgent calls for stable funding and a governance model highlight the critical nature of the CVE system in managing cybersecurity threats.

https://www.forbes.com/sites/tonybradley/2025/04/15/cybersecurity-world-on-edge-as-cve-program-prepares-to-go-dark/

From ISO to NIS2

By / Blog /

NIS2 Directive reshapes global cybersecurity compliance, replacing ISO 27001's voluntary controls with mandatory requirements. Leaders must harmonize frameworks, adapt to jurisdictional variations, enhance incident response and foster cross-department collaboration for effective compliance. Proactive strategies, training investments, and integrating compliance into digital transformation are essential for resilience and operational excellence. Viewing compliance as a dynamic capability offers competitive advantage amid evolving regulations and technologies.

https://gbhackers.com/iso-to-nis2/

IT Compensation Satisfaction at an All-time Low

By / Blog /

IT compensation satisfaction is at an all-time low, with only 41% of tech workers satisfied with their pay. Key issues include feeling underpaid, fewer salary increases, and declining benefits. Experts suggest that it's not solely about money; rethinking IT roles and providing growth opportunities could enhance morale and job satisfaction amidst changing job expectations and automation.

https://www.cio.com/article/3955009/it-compensation-satisfaction-at-an-all-time-low.html

Article 7 of GDPR: Preserving Data Integrity in Image Publication

By / Blog / ,

GDPR Article 7 mandates organizations to obtain explicit consent for processing personal data in images. Given the rise of digital operations and AI advancements, compliance is crucial for image management to protect privacy rights and data integrity. Organizations must document consent accurately, establish granular control systems, maintain audit trails, and deploy technical measures like encryption and version control. Regular security assessments and staff training are essential for sustaining compliance and operational security while integrating these processes into existing security frameworks. Adaptability to future regulations and technology is necessary for effective implementation.

https://www.tripwire.com/state-of-security/article-7-gdpr-preserving-data-integrity-image-publication

NIST Updates Privacy Framework, Tying It to Recent Cybersecurity Guidelines

By / Blog /

NIST has drafted a new version of its Privacy Framework to align better with its updated Cybersecurity Framework, improving usability and addressing stakeholder feedback. Changes include targeted revisions, insights on AI privacy risks, and relocation of usage guidelines online. Public comments are accepted until June 13, 2025, before a final version is released later this year.

https://www.nist.gov/news-events/news/2025/04/nist-updates-privacy-framework-tying-it-recent-cybersecurity-guidelines

Scroll to Top