The Cost of BIPA Non Compliance is High The floodgate of lawsuits being brought in the State of Illinois over improper storage of biometric data has continued over the past several months, pretty much unabated. Illinois’ Biometric Information Privacy Act (BIPA) has proven to be one of the more consequential [...]
Continuous Risk and Trust Assessment Approach The industry standards in information security have been undergoing dramatic changes over the past several years. So what is the Continuous Risk and Trust Assessment Approach? The paradigm of network security monitoring has firmly shifted from a rigid, concretized approach, to one the focuses [...]
DFARS / NIST 800-171 Compliant Preventing the loss of sensitive information is one of the biggest challenges facing organizations in their day-to-day operations. Data loss prevention techniques are vital for establishing secure protocols. It is not surprising that the National Institute of Standards and Technology (NIST) in their last special [...]
Edge Computing, IoT and Data Breaches In the era of high demand on data storage and organization, one of the most employed methods by firms to consolidate resources is edge computing. Edge computing is a method of optimizing cloud computing systems by performing data processing at the “edge”, the logical fringes of [...]
GTB Data Loss Protection Gives Users the Edge The application of a robust data loss protection (DLP) program is vital for the secure function of organizations. The very real risk of a data leak is exponentialized by the sea of data transfers typically taking place in within a high performing [...]
The Encryption Burden of GDPR and the New York DFS The persistently growing threat of cyber attack has begun to spur government agencies to enact security guidelines. These guidelines will have a mounting effecting on private industry. The most pertinent additions to these official protocols are the European Union’s General [...]
Applying Smart Algorithms for Intelligent DLP & Data Protection Data loss prevention (DLP) and Data Protection programs play a vital role in an organization’s information security strategy. DLP is essential for tracking a company’s volume of data and organizing it within security protocols. This includes classifying files / data streams [...]
The Importance of the Technology Behind e-Discovery Solutions The sheer quantity and quality of data at the core of major investigations have reached new levels. It is no longer uncommon to have complex cases with tens and even hundreds of millions of disparate evidentiary files, including e-mail correspondence, significant [...]
The Failings of Blanket Encryption As the rate and severity of data breaches increase, industry leaders in the IT sector have sought more all-encompassing measures to safeguard sensitive information stored on company systems. Many have identified the lack of blanket encryption for company files to be the primary cause of [...]
Insider Threats, preventing data exfiltration The digital economy is undergoing remarkable transformation and security is being compelled to evolve as organizations embrace services that are more dynamic in nature. The things organizations do to grow, innovate, and drive performance change the cyber risk landscape every day. Business leaders today are [...]
Which DLP Solution are you using? Sound familiar? Many organizations are now being required to discuss with their customers which DLP solution they have in place and how effective the solution is. Healthcare Organizations, Defense Contractors, Financial Firms and the like, are now requiring most of their 3rd party service providers (including [...]
Using a Zero Trust Approach towards Data Protection and Data Exfiltration Prevention What is Zero Trust Security? Face it, traditional network perimeter security (firewalls, IDS, and the like) have failed. Add into the mix the growth of cloud services (both sanctioned and unsanctioned) and you have a big problem. Zero [...]
What are the EU General Data Protection Regulation Articles relevant to Data Protection? [spacer] [spacer] Section 1 General obligations Article 15: Right of access by the data subject Article 17: Right to erasure (‘right to be forgotten’) Article 20: Right to data portability Article 25: Data protection by design and by default [...]
Presidential Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure … Is your report ready? May 11, 2017 Section 1 c (ii) of the Presidential Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure, where the Executive Order mandates that the NIST Cybersecurity Framework [...]
GTB’S Vision for the DLP Data Protection Space From a philosophical standpoint, the main difference between GTB DLP and the others is policymaking. Good Data Protection / DLP Policy making has many ingredients. First, is the classification of data. Then, the ability to detect that data followed by [...]
What are the Data Protection Officer’s Tasks defined under EU GDPR? Article 39 Tasks of the Data Protection Officer (DPO) The data protection officer shall have at least the following tasks: (a) to inform and advise the controller or the processor and the employees who carry out processing of their [...]
ICO publishes International Strategy to help protect UK public’s personal information in a global environment 04 July 2017 Latest news from the UK’s Information Commissioner’s Office (ICO) website The ICO has published its first ever International Strategy to help it meet overseas data protection challenges including increased globalism, changing [...]
Senate, House Versions of Cyber Hygiene Bill Introduced NIST, FTC, DHS would work together Jun 30, 2017 05:21 AM ET By John Eggerton eggerton Rep. Anna Eshoo (D-Calif.) has introduced a “cyber hygiene” bill, H.R. 3010, which would require the National Institute of Standards and Technology to come up with [...]
Europe hit by massive cyberattack By Associated Press June 27, 2017 | 11:20am | Updated “PARIS — A new and highly virulent outbreak of malicious data-scrambling software appears to be causing mass disruption across Europe, hitting Ukraine especially hard. Company and government officials reported serious intrusions at the Ukrainian power grid, [...]
Ohio governor’s website among government sites apparently hacked on Sunday BY ADAM FERRISE, CLEVELAND.COM aferrise@cleveland.com CLEVELAND, Ohio — The Ohio governor’s website was apparently hacked on Sunday, along with the state’s prison system’s website. The official website for Ohio Gov. John Kasich showed the same message from the hacker on [...]
What is the GDPR Risk Assessment from GTB Technologies? The GTB Technologies EU GDPR Data Protection Risk Assessment Organizations are adopting cloud apps at a rapid pace. Whether you allow or block these apps, chances are your users have found a way to access them. With the European Commission [...]
What is the GDPR EU General Data Protection Regulation? General Data Protection Regulation Defined: The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a regulation by which the European Parliament, the Council of the European Union and the European Commission intend to strengthen and unify data protection for all [...]
What is Data Encryption and Decryption? Encryption is the process of translating plain text data (plaintext) into something that appears to be random and meaningless (ciphertext). Decryption is the process of converting ciphertext back to plaintext. To encrypt more than a small amount of data, symmetric encryption is used. [...]
Privacy Mandatory – Data Breach Notification in Australia Australia’s Data Breach Bill amends the Privacy Act 1988 (Cth) (“Privacy Act”) and requires private and public organisations regulated by the Privacy Act to notify affected individuals and the Australian Information Commissioner of “eligible data breaches”. Click the article title to [...]
5 time Visionary , GTB Technologies positioned furthest for Completeness of Vision, strengths noted as: ” ■ GTB’s combination of data fingerprinting, OCR and native SSL decryption provides powerful interception capabilities, particularly for intellectual property protection use cases ■ Customers speak highly of GTB Discovery, which allows for [...]
MSPs who take advantage of intelligent cloud-based and on-premises data protection security are better able to protect their clients from the constantly evolving, never ending environment of insider and outsider threats. Some of the necessary data protection security features and facets for true Data Protection include: Preventing data exfiltration from [...]
Notable GDPR Cybersecurity News Click the article title to continue reading Rethink on bank cybersecurity rules might only follow major bank breach, says expert Banks ‘effectively unregulated on cybersecurity’ 10 Jan 2017 at 10:00, OUT-LAW.COM It might take a major bank to fail as a result of a cyber attack [...]
// Top Cybersecurity Conferences & Events – #infosec 2017 Feb 11-12, 2017 ISSA CISO Executive Forum Series The CISO Executive Forum is a peer-to-peer event. The unique strength of this event is that members can feel free to share concerns, successes, and feedback in a peer only environment. Membership is [...]