Add another layer to your #Business literacy. We at Serebral360° would love to know if the Forbes – Entrepreneurs article was helpful, leave a comment, like and share. Let’s dive in and discuss the information and put it to use to grow your business. #BusinessStrategy #ContentMarketing #WebDevelopment #BrandStrategy
Info@serebral360.com 762.333.1807 www.serebral360.com
Grap a copy of our NEW Business Stratgety Books #FFSS VOL1 and #FFSS VOL2
When it comes to data protection and digital privacy, 2018 was a veritable disaster. From the continually expanding list of companies reeling from devastating data breaches to Facebook’s iterative apology tour, it’s been a troubling year.
Unfortunately, the data landscape isn’t likely to improve anytime soon. Even so, the new year represents an opportunity to regain perspective and reorganize around the data trends that will define the year ahead. It’s a chance to start over, to pursue new initiatives and to do better at protecting users’ data and preserving their confidence.
Here are five things that will matter most for data protection in 2019.
1. More Emphasis On Insider Threats
In the past, companies focused their data defenses on protecting against external attacks; however, there is a growing awareness that the most imminent threat is actually sitting in the office cubicle.
Everything from negligence and accidental sharing to malicious data transfers and data theft are creating big problems for companies, and more mistakes are sure to be made in 2019. The problem is incredibly pervasive, accounting for more than half of data loss events, and companies are beginning to take action. I should know, as my company offers data loss prevention and employee monitoring solutions.
Robust employee monitoring software will become more prevalent as a tool for detecting and defeating internal threats. Fortunately, this technology is becoming more capable, actively differentiating between private information and company data and incorporating dynamic user profiling to detect abnormalities that could indicate a potential breach. Ultimately, by taking care of their own internal threats, companies can significantly mitigate the risk of succumbing to a data loss event.
2. Compliance With Current And Emerging Data Privacy Regulations
In 2018, reminders of the EU’s expansive General Data Protection Regulation (GDPR) filled inboxes as companies updated their privacy policies en masse to accommodate the new law.
The emails are unlikely to stop this year. Apple CEO Tim Cook proposed GDPR-like regulation in the U.S., calling for legal limits on the use and sale of user data. Moreover, in June, California passed its own digital privacy law that will similarly impact companies around the world. At the same time, many other countries including Brazil, Japan and South Korea are planning regulations of their own.
Taken together, companies will need to adapt to the nuanced data privacy demands from many different countries. Of course, this will require companies to do more than just update their privacy policies. They will need to demonstrate compliance and actually adhere to the laws’ demands, something that will require input and intentionality at every level of the organization.
3. Board-Level Access, Funding And Priority For CISOs
Data security is such an expansive and problematic priority that it is no longer the sole concern of the CISO (chief information security officer). A data breach has repercussions for the entire company, and the whole organization will need to be a part of the solution. This is especially true for C-suite executives who are charged with prioritizing and funding data security. To put it simply, CISOs are unlikely to be successful without the tangible support from the highest offices.
As Facebook’s executives learned the hard way, not listening to and learning from those charged with data security can have cascading consequences for themselves and the companies they run. Therefore, C-suite executives need to be accessible to the CISOs, listening to their concerns and prioritizing funding and personnel decisions to ensure that all preventative measures are adequately in place.
It’s much more advantageous to prevent a breach than to recover from one, so this priority can be a boon for everyone.
4. Better Automation For Defenders
Few things determine the effectiveness of a company’s prevention strategies like speed. The quicker companies can address a threat, the better chance they have of preventing it from escalating or even stopping it outright.
To do that, better automation is essential. Advances in artificial intelligence (AI) and other ancillary technologies are making it possible to analyze everything from user-behavior profiles for guarding against internal threats to identifying possible external attacks on a company’s infrastructure. In some ways, this technology is becoming so competent that IT admins can be alerted to a threat before it compromises sensitive information.
It may seem dubious that more technology is the solution to an inherently technology-based problem, but the right technology deployed for the right purposes can make all the difference.
5. More Security Training And Better Oversight For Employees, Third-Party Vendors And Privileged Users
For companies to succeed at protecting data in 2019, they will need to foster an all-in approach to data security. Training in data security best practices needs to extend to all facets of an organization including management, employees, third-party vendors and anyone else with access to the company’s network.
Moreover, oversight and monitoring of these priorities will provide accountability and reinforcement for the critical prerogative of data security. In doing so, it’s possible to spot data exfiltration risks and to provide warnings when training protocols are broken, creating a dynamic system for preventing a data loss event.
Few things can derail a company’s goals and aspirations like a data breach, and the threats are sure to change as the year progresses. However, by planning to address the things that will matter most, any organization can put themselves in a position to succeed in a digital landscape littered with hazards and threats.
December 14, 2018 at 08:11AM
Forbes – Entrepreneurs