Compliance

What is FedRAMP?

Considering the amount of sensitive data that the U.S. Federal Government deals with on a daily basis, it’s no surprise that they have established strict parameters for the service providers they choose to work with. That’s precisely why FedRAMP, the Federal Risk and Management Program, was established in 2012—to evaluate and designate cloud…

The Production Line: Automations

For our second edition of The Production Line, we’re going back to the future with Automations. Introduced in February of 2019, this Early Availability (EA) feature is currently the most popular EA selection since we added self-enablement options for super admins, so let’s dig in! What are Automations? The Automations feature impacts three areas…

How Okta Lifecycle Management Can Help with Audit and Compliance

At Okta, we run compliance differently. Most organizations place compliance under either the legal or finance team, who don’t work with their security team to ensure those controls are implemented effectively. At Okta, we use security to drive compliance. Compliance is complex and regulations are a moving target, with GDPR and other privacy…

How Okta Can Help Confirm User Consent to Comply with Data Privacy Laws

With the proliferation of massive security breaches like Panera Bread and many others in 2018, new data privacy regulations like the GDPR are being enforced to protect individuals’ personal data. As awareness of these breaches rises, loss of individual trust is tied directly to customer sentiment, which, in turn, impacts revenue. In this post, we…

Okta Releases FIPS 140-2 Validated Encryption in Okta Verify

Credential phishing is a real and growing threat, and multi-factor authentication (MFA) is an effective protection against it. The strength of MFA lies in its requirement to present additional valid factors, beyond a password, to gain access, thwarting would-be attackers. But not all factors are created equal. Some factors, like security questions…

GDPR, Privacy and Consent Management: How Okta Can Support Your CIAM Requirements

Beginning on May 25, 2018, the General Data Protection Regulation (GDPR) became officially enforceable. This new regulation is now top of mind for any organization storing and processing EU citizen data. Consumer-facing apps and sites are of particular sensitivity. The challenge is that while the GDPR provides guidelines for compliance, it is not…

Two Months In: How Are Companies Being Impacted by the GDPR?

Online data privacy has always been a controversial topic. The fact that users store data with third parties has demanded increased transparency on how these platforms actually store and process personal data. Data breaches resulting in compromised personal information have added fuel to the fire, proving that privacy concerns are warranted. These…

4 Compliance Regulations Every CISO Should Know

The job of a CISO is a tough one. Adaptability is key in a field where change is the only real constant, as new laws, evolving regulations, and increasingly complex security threats challenge even the most seasoned executive. While many of the regulations that CISOs deal with are industry specific, the approach to compliance (ensuring teams have…

Okta for Healthcare: Okta Debuts HIPAA Compliant Service

Protecting personal health and identity information is paramount within the healthcare industry. At Okta, we partner with HIPAA Covered Entities and their Service Providers to secure this very data, while enabling these partners to quickly innovate and remain leaders in the industry. To better serve the highly-regulated and security-conscious…

Archive