The fallout of major data breaches in the past two years has sent a clear message: the responsibility for data breaches is being laid on the board of directors and C-level employees. Having a strong IT security team, led by a strong CISO, is not only key to an effective security policy. Indeed, studies have shown than an effective CISO and a well-run information security program can save an organization almost 10% in total revenue from a decreased risk of data loss and theft.
Many reports have been coming out pinning most of the blame for data breaches on people, whether it’s inadvertent human error or malicious behaviour. As many as 90% of all security incidents are tied back to “people” – mistakes, phishing, bad behaviour, lost stuff, etc. According to our own study, many employees put data at risk in small but ultimately significant ways, such as modifying default settings, accessing personal email, online banking / shopping, social media, public WiFi, or file sharing. With a growing recognition of the risks posed by employees, we must ask: why are employees making risky choices that defy corporate security policies?
Data breaches at federal agencies involving personally identifiable information (PII) have been on a steady incline for the past several years. Knowing the ongoing struggles that agencies have with data security, the Federal government is taking steps to hire contractors to deal with future data breach fallout.
Absolute today announced the launch of Absolute DDS for Healthcare, a new offering tailored specifically to serve its healthcare customers. Absolute DDS (formerly Absolute Computrace) for Healthcare includes added support that helps customers determine healthcare compliance and regulatory exposure in the event of a data breach.
The EU General Data Protection Regulation (EU GDPR) is expected to come into effect in 2017. This means that in less than 2 years’ time, you need to have a data protection officer, a strict plan in place to notify all of your customers about breaches as soon as they happen, all of your data must be encrypted and your company must have an insurance plan to help guard against data fines. Sounding like a fast approaching deadline to make some pretty drastic changes, doesn’t it?
Absolute recently announced an agreement with Advanced Micro Devices (AMD) to incorporate our Persistence technology into AMD chip designs.
There have been a number of troubling reports, including one from the Government Accountability Office (GAO), indicating that data breaches at federal agencies involving personally identifiable information (PII) have been on the rise. According to reports, federal agencies continue to struggle in many areas of data security, from security policies and procedures to security controls and incident response programs.
The National Cybersecurity Center of Excellence (NCCoE) at the U.S. National Institute of Standards and Technology (NIST) just released a draft of its first cybersecurity practice guide, “Securing Electronic Health Records on Mobile Devices.” The document serves as a “how to guide” with a solution on how to secure PHI with ideas consistent with cybersecurity standards and best practices.