Close
  • Latest News
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home IT Management
    • IT Management

    Eight Ways CSOs Can Prepare For European Union GDPR Compliance

    By
    Chris Preimesberger
    -
    May 31, 2017
    Share
    Facebook
    Twitter
    Linkedin

      PrevNext

      1Eight Ways CSOs Can Prepare For European Union GDPR Compliance

      1 - Eight Ways CSOs Can Prepare For European Union GDPR Compliance

      Believing the misconception that compliance and security are the same can have a significant negative impact on an organization’s security program—and on its business overall. The European Union’s General Protection Data Regulation (GPPR), set to take effect in May 2018 and will impact any organization that does business internationally, is shedding light on the fact that current corporate security infrastructures are not facilitating both security and compliance. Within the next 12 months, businesses will need to increase their security measures to protect corporate information as well as employee and customer data effectively. In this eWEEK slide show, Citrix Chief Security Officer Stan Black explains why and offers eight tips to help organizations improve their overall security while at the same time ensuring they are compliant.   

      2Make Lesson Plans

      2 - Make Lesson Plans

      According to a global survey from Citrix and the Ponemon Institute, 67 percent of organizations are aware of GDPR, but only half have started to prepare for it and allocated budget. Enterprises need to take a deep dive into the technical and organizational measures the regulation mandates, including data minimalization and controls around data protection, processing, storage, collaboration and accessibility.

      3Build Your Roster 

      3 - Build Your Roster 

      The survey found the GDPR will have a significant and negative impact on business operations. As such, to ensure their organization is not scrambling in May 2018 to meet the GDPR requirements, CSOs need to make it top of mind and enlist all necessary parties from the finance, compliance and security departments during preparation.

      4Settle on a Definition of Privacy 

      4 - Settle on a Definition of Privacy 

      The GDPR is being instituted to ensure organizations better protect personal data from damaging data breaches. The need for user privacy as a driving force for compliance represents a turning point in the security and technology industries. Therefore, key business stakeholders must agree on what privacy means to the organization and shift their mindset to improve their overall security infrastructure.

      5Look Beyond Security-Specific Solutions 

      5 - Look Beyond Security-Specific Solutions 

      While organizations may want to invest in new security technologies to meet compliance regulations, they also should consider IT investments that influence how sensitive corporate and customer data is transferred. If an organization allows employees to BYOD (bring your own device), for example, centralizing applications and data in the data center or cloud can help ensure business-related information is not stored on a device.

      6Consider the Effects of Emerging Technologies 

      6 - Consider the Effects of Emerging Technologies 

      As artificial intelligence, machine learning, internet of things and other emerging technologies prove useful in an enterprise environment, organizations must factor them into their overall GDPR compliance strategy. Their non-traditional data-collection methods could inadvertently expose data that should be protected. Conversely, IoT-enabled devices could provide contextual data about users that can help an organization better harden its infrastructure.

      7Keep an Open Mind

      7 - Keep an Open Mind

      The survey found more than half of businesses are concerned about the increased global effects GDPR will bring. That said, organizations should not drop all other security projects in the works. Organizations must consider different ways to improve their overall security architecture, such as working secure coding practices into the development cycle for business applications and educating the workforce on security policies and best practices.

      8Don’t Become an Example of Security Inefficiency

      8 - Don’t Become an Example of Security Inefficiency

      The first organization to be caught in violation of the GDPR won’t get a free pass, facing penalties of up to 100 million euros. That’s why 65 percent of global businesses are most concerned about the financial implications of these regulations, according to the survey. Companies should plan for the worst-case scenario and take a strategic approach to find comprehensive solutions that fit their business needs.

      9Set Clear and Measurable Goals

      9 - Set Clear and Measurable Goals

      As with any new framework, organizations should create a clear checklist of goals, success metrics and a corresponding timeline to stay on track with its overall compliance and privacy strategy. While May 2018 is a year away, one small misstep might mean a compliance and budget headache or setback.

      PrevNext

      MOST POPULAR ARTICLES

      Cybersecurity

      Visa’s Michael Jabbara on Cybersecurity and Digital...

      James Maguire - May 17, 2022 0
      I spoke with Michael Jabbara, VP and Global Head of Fraud Services at Visa, about the cybersecurity technology used to ensure the safe transfer...
      Read more
      Cloud

      Yotascale CEO Asim Razzaq on Controlling Multicloud...

      James Maguire - May 5, 2022 0
      Asim Razzaq, CEO of Yotascale, provides guidance on understanding—and containing—the complex cost structure of multicloud computing. Among the topics we covered:  As you survey the...
      Read more
      Big Data and Analytics

      GoodData CEO Roman Stanek on Business Intelligence...

      James Maguire - May 4, 2022 0
      I spoke with Roman Stanek, CEO of GoodData, about business intelligence, data as a service, and the frustration that many executives have with data...
      Read more
      Applications

      Cisco’s Thimaya Subaiya on Customer Experience in...

      James Maguire - May 10, 2022 0
      I spoke with Thimaya Subaiya, SVP and GM of Global Customer Experience at Cisco, about the factors that create good customer experience – and...
      Read more
      IT Management

      Intuit’s Nhung Ho on AI for the...

      James Maguire - May 13, 2022 0
      I spoke with Nhung Ho, Vice President of AI at Intuit, about adoption of AI in the small and medium-sized business market, and how...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2021 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×