The U.S. government's Defense Federal Acquisition Regulation Supplement (DFARS) aims to help the DOD protect its own data and that of its business partners through multifactor authentication (MFA).
New privacy regulations in California, the U.K. and other areas are adding to the number of frameworks CISOs say they have to study to make the best internal budgetary decisions.
To keep GDPR compliance efforts on track, security leaders must collaborate across departments, invest in robust tools and services and adopt a risk-based approach to handling customer data.
Without a data breach response plan, companies will find it difficult to disclose security incidents within 72 hours as required by the General Data Protection Regulation (GDPR).
Organizations can fast-track their GDPR compliance efforts by focusing on three crucial areas: awareness and understanding; accountability and responsibility; and resources and support.
Without network visibility, organizations run the risk of mishandling customers' personal data and running afoul of new compliance mandates.
At the May 2018 IBM Security Summit in London, industry experts discussed how organizations could transform their business by developing a formal strategy for cloud security.
Follow the decision-making process of IT director Shira Sutton as she endeavors to avoid security risks and unnecessary business continuity headaches on the journey to cloud transformation.
The first step toward achieving GDPR readiness is to locate your sensitive assets and identify weaknesses in your data security infrastructure. After all, you can't protect what you don't know.
Organizations preparing for GDPR should reach out to their third-party vendors to clearly define the roles, expectations and responsibilities of data controllers and processors.