A new e-book from TPx, ACA’s Safeguards Rule security partner of choice, walks you through the steps of creating an information security program. And don’t forget to attend the next webinar in our ACA How: Safeguards Rule Implementation series on March 10.
03/06/2023 2:30 P.M.
3 minute read
A new e-book on ACA International’s Safeguards Rule Resource Center highlights how and why to train employees on cybersecurity awareness.
The e-book, from TPx, ACA’s Safeguards Rule security partner of choice, walks through which companies must comply with the rule, your compliance to-dos, key terms in the rule, and the steps of creating an information security program. Get it here.
ACA’s Safeguards Rule Resource Center provides multiple resources and compliance tools for members. You can read the text of the amended rule as well as articles breaking down compliance with it, listen to related recordings of ACA’s members-only ACA Huddle, and access new education offerings.
Take note: the ACA How: Safeguards Rule Implementation series has added new webinars to its lineup. You can also tune in to live Q&A sessions, where experts from TPx will answer any questions you have and help demystify the provisions of the Safeguards Rule.
All sessions are scheduled from 12 to 12:30 p.m. CT. Read the descriptions below:
Friday, March 10, 2023: Security Program Creation: It’s an Iceberg
Security policies are the bedrock of any security program. Without these policies, no program can be successful. For organizations new to security programs, the development of these documents can be a daunting task. This session will discuss the critical/required security policies that will be the foundation of your security program.
Friday, April 14, 2023: Reviewing Multi-factor Authentication
Multi-factor authentication (MFA) is a layered approach to securing physical and logical access where a system requires a user to present a combination of two or more authenticators to verify a user’s identity for login. In this session, we will be presenting an MFA strategy in relation to the Safeguards Rule. Additionally, we will explain how to effectively implement MFA for your organization.
Friday, May 12, 2023: Vulnerability & Penetration Scanning Exposed
All qualifying organizations must perform an annual penetration assessment using “a test methodology in which assessors attempt to circumvent or defeat the security features of an information system by attempting penetration of databases or controls from outside or inside your information systems.”
In this session, we will discuss:
- The differences between penetration and vulnerability scanning;
- How to conduct and frequency of scans; and
- Understanding scan results/reports and the importance of remediation.
Friday, June 9, 2023: Haven’t Started Meeting the Safeguards Rule? Do This
The deadline is here—June 9, 2023. If you haven’t started down the path to becoming FTC Safeguards Rule-compliant, start now. Small and medium-sized agencies might find it more challenging to become compliant. To pass the FTC audits beginning in June 2023, you’ll need to be defensible and provide a strong case that your information security program is secure and running smoothly. In this session, we will help you figure out what you can tackle in-house and where you need to outsource. We will also help you understand the Safeguards Rule requirements and learn how to become defensible by working on a plan today.
Plus: Our live Q&A series will be held March 17, April 21, May 19, June 16, and July 14, 2023. Note: these sessions will not be recorded, so get them in your calendar today.
Members can register for the ACA How: Safeguards Rule Implementation Series at any time and will gain access to all previous content otherwise missed. Members who have already purchased the series can take advantage of these exclusive add-on sessions for free to prepare for the upcoming June 9 compliance date.
You will find the full lineup of the Safeguards Rule webinar series, including information on how to register, right here.