Intelligent CISO Issue 1 - Page 57

destruction. Companies must further take measures to identify risks, maintain safeguards against such risks and ensure that these safeguards are continually updated in response to new risks. In Europe, the General Data Protection Regulation (GDPR) becomes enforceable from May 25, requiring data protection ‘by design and by default’, in addition to the right to access and the right to erasure among others. Non-compliance can result in significant fines – 4% of global revenue or €20 million, whichever is greater – as well as the possible accompanying reputational loss. In a growing number of countries, data privacy regulation now stipulates where data must be stored, presenting organisations with additional challenges. Or the benefits of public cloud. In many cases it will be a hybrid model with a mix of public and private cloud solutions for different systems and applications. Ensuring regulatory compliance is a long-term commitment and investment in implementing a cost-effective supporting infrastructure might even represent one of the biggest opportunities for companies to accelerate digital transformation in recent years. Education and automation With security at the core of a modern organisation, good governance for managing systems and people effectively is critical. Strong authentication and encryption becomes a necessity. Backup, archiving and storage helps to further protect against ransomware and mobile device management becomes an instrumental means of controlling information at the edge. It is also not just about the technology. Industry estimates put nearly half of all security breaches down to human error and educating employees on how to spot suspicious emails can help cut down on phishing, whaling and other attacks that rely on unsuspecting end-users to click on links to infected websites, or open attachments that install malware or ransomware. Migrating to the cloud This places the focus firmly on good data management, with the benefits being increased security and operational efficiency, to improved customer service. By turning to cloud computing at the infrastructure, platform and software level, businesses gain the ability to www.intelligentciso.com | Issue 01 In a growing number of countries, data privacy regulation now stipulates where data must be stored, presenting organisations with additional challenges. However, the ava 䁽مѥٔ)aՐЁѽˊdͽѥ)܁ٕ́ѽ́Ʌɕ䁅)ѡ٥ѡȁݽɭ)ɥمєՐݥѠѡ)х䁅ɕѥѕ)Ёɥѥɵѥ)ѥ́ݥѡѡȁݸե)!ݕٕȰѡٕ䁅م́)ѕ́ѡЁѡѡɕ́ɔ)ͼɽ٥́ݥѠѡѽ)ѡЁɔɕեɕѼЁѡUͥ)ɹ$ѕՕ̰)ѽ́Ʌѥ́ݥѥє)э̰хɕѥ)݅ɔɕѥɥ̸ͭх͕́ݥѠ)ѽ́Ѽչэ)ѥ́ɔɕ䁽ѡɭа)Ё剕ѡɕ́ɕձѥ)ɽյɽȰݥѡЁЁ٥Ѽ)͡Ёݸȁх ԰(ՐɅѥ́ɥͬݥم͠)ѥɕ䁅ɔѕЁѽѥ)ݥɵєѡՐљɴ)ѡхЁѡЁѡ)Ʌѕ́ѕɥ͔Րѥ()%ѥѼѡɥЁѼ̰ɥ)ѼɅɔфх䰁)ѡ䁱ͱѥٔɕեɕ́AH)́ѼѼɽ٥䁥٥Յ)ݥѠٕфɝͅѥ)́ѡՑфɕɑ)䁅ѥ٥䁱́ѡЁ䁉ѽɕ)Ʌає͔ф)ɕٽյ́Lٕ)ɽɽ́ɕ٥ͱ䁑Ʌє)ѕ̃LѼɔ