Close
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Cybersecurity
    • Cybersecurity

    IBM Integrates GDPR Features Into Resilient Incident Response Platform

    By
    Sean Michael Kerner
    -
    May 25, 2017
    Share
    Facebook
    Twitter
    Linkedin
      GDPR Countdown

      One year from today, the European Union’s General Data Protection Regulation (GDPR) comes into effect, bringing with it many strict requirements to protect user data and privacy. GDPR also requires organizations to be forthright about breaches when they occur. IBM expects its Resilient Incident Response Platform (IRP) to play a key role in this area.

      “GDPR is a big beast and Reslient’s lens on this is focused on the privacy breach reporting aspects,” Ted Julian, vice president of product management and co-founder of IBM Resilient, told eWEEK. 

      Julian added that there are many different components to GDPR, including the ‘right to be forgotten’ that requires organizations to delete all information on a given user, which is an item that is not part of what Resilient is doing. Instead IBM Resilient is adding new capabilities to the Resilient Incident Response platform specifically for GDPR, including a preparatory guide, simulator and privacy module.  

      “GDPR is just a particularly big update of something that we have been doing since Resilient started,” Julian said.

      Resilient Systems was founded in September 2011 and was originally known as CO3 until the company changed its name in February 2015. The company was acquired by IBM in February 2016.

      Julian said that Resilient has always included data about personally identifiable information (PII) as part of the incident response platform, though GDPR has many specific nuances that are being addressed with the new capabilities. The GDPR Preparatory Guide is a new capability for Resilient and is something that it hasn’t done before for other compliance efforts. With the GDPR Preparatory Guide, Julian said there is information and checklists for various GDPR requirements. The guide is tied to the overall Incident Response Platform, providing users with workflows to help make the requirements actionable.

      Understanding what is required by GDPR is one thing, actually being prepared to handle a privacy breach notification, under the GDPR regime is another. That’s where the new Resilient GDPR Simulation function will come into play, providing organizations with the ability to work through a simulated event to ensure they are prepared.

      “A best practise for organizations is to run a simulation every quarter to test out something that perhaps the organization doesn’t have regular experience with,” Julian said. “In doing so, gaps can be found and the process can be improved, so when a real breach occurs the organization can be prepared.”

      The Resilient GDPR-Enhanced privacy module further enhances the Incident Response Platform with specific rules for breach disclosure under GDRP. Julian said that different jurisdictions have long had various rules for when a breach needs to be publicly disclosed.

      Julian explained that part of the value that Resilient provides provides is to map the breach disclosure regulations of a jurisdiction to the details of a specific incident. As such, a user inputs the number of records that were lost in a data breach, the nature of the data and where the records were stored. Then the Resilient system will make a determination whether or not disclosure is required. It’s also important to understand who needs to be notified in the event of a data breach, which is also information that is part of the Resilient system.

      Among the biggest risks associated with GDPR is the penalty phase for non-compliance, which can reach to four percent of a company’s revenues. Though the risks associated with non-compliance are large, many organizations are still largely unaware of GDRP requirements.

      According to a new study from the Data Protection Commissioner (DPC) conducted by Amárach Research, 59 percent of small and medium sized organization were unaware of the large-scale fines that could be imposed for non-compliance with GDPR. A study conducted by Varonis Systems today reported that 75 percent of organizations will struggle to meet GDPR regulations by the deadline, one year from today.

      Sean Michael Kerner
      Sean Michael Kerner is an Internet consultant, strategist, and contributor to several leading IT business web sites.
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.

      MOST POPULAR ARTICLES

      Latest News

      Zeus Kerravala on Networking: Multicloud, 5G, and...

      James Maguire - December 16, 2022 0
      I spoke with Zeus Kerravala, industry analyst at ZK Research, about the rapid changes in enterprise networking, as tech advances and digital transformation prompt...
      Read more
      Applications

      Datadog President Amit Agarwal on Trends in...

      James Maguire - November 11, 2022 0
      I spoke with Amit Agarwal, President of Datadog, about infrastructure observability, from current trends to key challenges to the future of this rapidly growing...
      Read more
      IT Management

      Intuit’s Nhung Ho on AI for the...

      James Maguire - May 13, 2022 0
      I spoke with Nhung Ho, Vice President of AI at Intuit, about adoption of AI in the small and medium-sized business market, and how...
      Read more
      Cloud

      IGEL CEO Jed Ayres on Edge and...

      James Maguire - June 14, 2022 0
      I spoke with Jed Ayres, CEO of IGEL, about the endpoint sector, and an open source OS for the cloud; we also spoke about...
      Read more
      Applications

      Kyndryl’s Nicolas Sekkaki on Handling AI and...

      James Maguire - November 9, 2022 0
      I spoke with Nicolas Sekkaki, Group Practice Leader for Applications, Data and AI at Kyndryl, about how companies can boost both their AI and...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2022 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×