October 2023 Newsletter

Newsletter Highlights

• ESG and The Hottest Summer on Record
• SWIFT 2019 to 2023
• Newsletter: Read Past Editions
• Upcoming Documents
  
• Authority Documents
• Suggestions/Comments: email us

ESG and The Hottest Summer on Record

Noticed anything different about this past summer? We’ve experienced the hottest summer on record, with extreme weather conditions like heat waves and flooding! With climate change undeniable, businesses are facing growing pressure to adopt sustainable practices and stay ESG compliant. As compliance with ESG is becoming a strategic necessity, our Common Controls Hub (CCH) offers a game-changing solution by simplifying the complex web of regulations and increasing efficiency.

Learn more about CCH’s extensive library and centralized platform and how it can improve the efficiency your ESG/GRC program.

SWIFT 2019 to 2023

In the ever-evolving world of financial messaging, efficiency is of paramount importance. As the global provider of secure financial messaging services, SWIFT is committed to enhancing the efficiency and security of its platform. To achieve this, SWIFT has updated the Customer Security Controls Framework, a comprehensive set of measures designed to streamline operations, enhance security, and improve compliance for organizations utilizing the SWIFT network.

This article explores the SWIFT Customer Security Controls Framework, its evolution, key objectives, and the benefits it offers. We will also delve into the importance of efficiency in financial messaging and how the framework helps organizations achieve this goal. Finally, we will discuss the implementation process and the guidance and support available to organizations.

Read more and update your access to SWIFT 2023

Newsletters: Read Past Editions

Want to read the news released about Unified Compliance? All released newsletters are posted the same day they are emailed. Check out post UCF news. Read our Newsletters.

Upcoming Documents

The UCF team has plans to map the following Documents:

Q4

• Australian Government Information Security Manual, June 2023 [AD 3595]
• SOC 2® Reporting on an Examination of Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy, October 15, 2022 [AD 3647]
• Customer Security Controls Framework (CSCF), v2024 [3658]
• TISAX (Trusted Information Security Assessment Exchange) [3670]
• DORA (The Digital Operational Resilience Act (DORA) - Regulation (EU) 2022) [3668]

Authority Documents

What's new and popular in the CCH?

See the list below for Authority Documents published since our last newsletter.

Which Authority Documents are most important to you?

Submit a request.

What are the most accessed AD's monthly?

This month's list of the 50 most selected Authority Documents, including how many groups and initiatives each Authority Document has been assigned!

• 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy (with Revised Points of Focus -2022) [AD 3609]

• 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy (with Revised Points of Focus -2022) [AD 3609]

• 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy (with Revised Points of Focus -2022) [AD 3609]
• NIST SP 800-218, Secure Software Development Framework: Recommendations for Mitigating the Risk of Software Vulnerabilities, Version 1.1 [AD 3650]
• Criminal Justice Information Services (CJIS) Security Policy, CJISD-ITS-DOC-08140-5.9.1, Version 5.9.1 [3634]
• 82nd Oregon Legislative Assembly, Senate Bill 619 [3664]
• MITRE ATT&CK®, Enterprise Mitigations, Version 13.1 [3667]

• 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy (with Revised Points of Focus -2022) [AD 3609]

• 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy (with Revised Points of Focus -2022) [AD 3609]

• 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy (with Revised Points of Focus -2022) [AD 3609]

• 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy (with Revised Points of Focus -2022) [AD 3609]

• 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy (with Revised Points of Focus -2022) [AD 3609]
• Indiana Code, Title 24, Article 15, Consumer Data Protection [AD 3646]
• Hong Kong Personal Data (Privacy) Ordinance, E.R. 1 of 2013 [3062]
• Florida Statutes, Title XXXIII, Chapter 501, Sections 701-721, Florida Digital Bill of Rights [3655]
• 82nd Oregon Legislative Assembly, Senate Bill 619 [3664]

• 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy (with Revised Points of Focus -2022) [AD 3609]
• NIST SP 800-218, Secure Software Development Framework: Recommendations for Mitigating the Risk of Software Vulnerabilities, Version 1.1 [AD 3650]

• 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy (with Revised Points of Focus -2022) [AD 3609]

• 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy (with Revised Points of Focus -2022) [AD 3609]

• 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy (with Revised Points of Focus -2022) [AD 3609]

Thanks for Reading our newsletter. If you have any suggestions or comments, please email us

Best Wishes,

Aubrey Bousley, Sales Operations

and the UCF Sales Team

702.805.2613
abousley@unifiedcompliance.com

www.UnifiedCompliance.com

CommonControlsHub.com

www.UCFMapper.com