The rules of risk taking
What kind of person are you? Are you a risk taker or someone who like to play it safe? Is your organization one that takes risk, or is it risk averse?
Let’s take digital transformation, for example. Most organizations want to embrace it, but feel constricted due to data privacy concerns and compliance regulations. However, companies that can’t or won’t find a path forward run the risk (pun intended!) of getting left behind.
Due to an ever-expanding attack surface, business-led digital transformation will always pose a risk to data – but that risk can absolutely be mitigated. This concept was a main topic of conversation during last week’s Cloud Expo Asia show in Hong Kong.
Reaching into the cloud
Last week’s conference served as a forum for IT professionals from enterprises and public sectors to learn about effective cloud investment and strategy, while developing and executing technology projects. Attracting over 10,000 visitors and more than 250 expert speakers and vendors, this premium APAC industry event is one Thales eSecurity is proud to sponsor.
The Cloud Expo Asia buzz
The most pressing concerns facing organizations in APAC seemed to lead back to compliance. Questions we received at our booth included the following:
- How can my business meet regional and global compliance regulations?
- What should be classified as “personal data”?
- Which are the best strategies are for protecting data in the cloud?
From Top: Thales eSecurity managing principal vonsultant Ian Christofis presents his session to a packed audience. From L to R: A hive of activity around the Thales eSecurity booth.
Given the level of interest in compliance, then, it’s unsurprising that Thales eSecurity managing principal consultant Ian Christofis delivered his presentation, “Meeting the Challenges of GDPR and other Compliance with Encryption”, to a packed audience. Among the points Ian made:
- Privacy and security are often confused. They are separate but overlapping concepts
- The GDPR has international reach and stands to have a profound effect on organizations all over the world
- Many types of data will be considered personal data. If in doubt, treat all data as personal data
Privacy, security, and compliance
For good or bad, compliance is seen by many as an easy benchmark standard for securing data, even when moving into the cloud. However, privacy is a very complex area, with many jurisdictions having privacy-related laws guided by various multinational frameworks and guidance. Privacy regulations continue to proliferate as threats to privacy increase.
So what are organizations doing about it? Well, most are being smart and protecting their data using one of the most powerful tools available: encryption.
In light of the challenges presented by regulations, none more so than the GDPR, and the ongoing transition to multi-cloud infrastructures, it is more essential than ever businesses choose data protection technologies that help them meet compliance requirements while still scaling with their business needs.
As always, feel free to leave a comment below, or tweet us @thalesesecurity.
*** This is a Security Bloggers Network syndicated blog from Data Security Blog | Thales e-Security authored by Jiro Shindo. Read the original post at: https://blog.thalesesecurity.com/2018/05/24/highlights-from-cloud-expo-asia-hong-kong-2018/