GDPR Security & Breaches: What You Must Know According the 2017 Ponemon Cost of Data Breach Study, the global average cost of a data breach is $3.2 million. The good news: that cost is down 10% over previous years. The bad news: companies in the study have experienced larger breaches (an
3 GDPR Principles: Accuracy, Retention, and Transparency We have shared many details around the GDPR enforcement date beginning 25 May 2018 — and there is a lot of information out there. Perhaps a question continues to pop up: Why the GDPR?GDPR codifies principles and practices to help secure the personal
“Congratulations, You’re Our New DPO!” Now What? “Congratulations, You’re Our New DPO!” Now What? Perhaps you were the last one to arrive at the meeting and the rest of your colleagues volunteered you. Of course, your boss said, “This is valuable work; you are just the person for the role,”
It is very clear what I’ve been spouting for years – perimeter security technologies WITHOUT end-user guided, steward-approved and maintained classifications result in lack luster performance, capabilities and increased user frustration – making the (significant) investment negated and oft-times ineffectual. Do you (CIO, CISO, VP InfoSec, SecArch, SecEng, etc.) want
10 Steps to GDPR Readiness 10 Steps to GDPR Readiness How do you know when you’re ready? REALLY ready? This question is more than just a one-in-a-lifetime moment in a person’s mind watching their spouse-to-be walk down the aisle. It pops up at all major crossroads and significant milestones: college graduation, the birth
Key Steps for GDPR Compliance It’s coming…are you ready? On 25 May 2018, the European Union General Data Protection Regulation (GDPR) takes effect. It is the first comprehensive attempt at establishing data compliance standards across national economies. It establishes timelines to notify users of data breaches, penalties for non-compliance, and
I guess I am shocked at the numbers – but shouldn’t be. Based on the conversations we have all week with EU based companies – many many are not ready for sure.. https://www.infosecurity-magazine.com/news/fsb-just-8-of-uk-small-businesses/
GDPR: Power to the People or What You Must Know about Data Subject Rights As the May 25 date for GDPR (General Data Protection Regulation) implementation zooms closer, now is the time to review and understand your organization’s responsibilities regarding the rights of data subjects (also known as “every person”).
Late last month I was asked to contribute to the pretty exclusive (well, for security folks anyways :)) ISSA Journal. The ISSA was started in 1984 and is one of the largest security organizations – over 11,000 information security professionals. I am a member of the local Raleigh, NC chapter and have always
Today – we are now <100 (our site shows 99 right now!) days away from GDPR becoming law across the European Union. As we’ve discussed before – this legislation has world wide implications and I feel (and have validated with many other experts) that this will probably be more intense
