LATEST INTELLIGENCE
ARUBA SECURITY
SOLUTIONS FOR GDPR
A 360-DEGREE VIEW OF PEOPLE, PROCESS AND TECHNOLOGY
PRESENTED BY
Download whitepaper here
N
o matter what the objective or task,
organisations operate best with a well-tuned
mix of people, process and technology,
and this is especially true when implementing
cybersecurity protection. Cyberattacks have become
more targeted, more organised and more lethal.
With the advent of mobile connectivity, cloud and
IoT, these attacks have a much easier time finding
gaps in cyberdefences and making their way inside
the network.
As a result, governments and industry regulators
have become increasing more comprehensive
in specifying how organisations implement
cybersecurity, especially as it relates to personal
information. In Europe, a new privacy regulation,
known as General Data Protection Regulation (GDPR)
introduces a gold standard for data protection
and will impact any organisation (independent of
location) that maintains European personal data.
Other governments worldwide are adopting similar
approaches, so preparing for data privacy regulations
is a global responsibility.
The EU data protection laws passed in the 1990s led
the way in assuring the rights of individuals to control
the collection and use of personal information. These
are being further enhanced with the passing of the
22
INTELLIGENTCIO
GDPR, which came into effect on May 25 2018. The
goals of GDPR are:
“. . . to harmonise data privacy laws across Europe,
to protect and empower all EU citizens’ data privacy
and to reshape the way organisations across the
region approach data privacy.”
While GDPR has gained a great deal of attention
from the potentially significant financial penalties
that can be imposed in the event of a loss or misuse
of personal information, what is equally important
is the prescriptive nature of the regulation. It will
require organisations to invest in preparing people
and adopting new processes and technology to
comply. The GDPR covers a wide range of topics
and activities from record keeping, individual rights
to access, delete or port data, security and security
breach notification.
The purpose of this document is to focus on how
cybersecurity products and technology can assist
organisations with GDPR compliance.
People – The data protection officer
An important element of GDPR is the role of the
Data Protection Officer (DPO). Any organisation
www.intelligentcio.com