How Data-Centric Security Enables Cross-Regulatory Compliance
GDPR. CCPA. HIPAA. PCI DSS. The number of acronyms within the data security and privacy sphere is forever mounting as governments and industry regulators try to keep pace with modern enterprise’s demands for data. Data has arguably become one of, if not, the most important asset in the global economy ... Read More
16 Reasons to use Third Party Cloud Security and not Salesforce Shield
tl;dr: Salesforce Shield has a hefty price tag on top of the SFDC license, despite offering limited protection within Salesforce and zero protection to other applications ... Read More
Mass Move to the Cloud – 3 Essential Tips for Cloud Migration
Cloud technology has become indispensable for many organizations, however there are common mistakes and misconceptions that you should be aware of in order to keep your data secure, even as it travels off premises ... Read More
PCI DSS 4.0 and the Changing Approach to Compliance
In the past, the focus of PCI compliance was to store as little sensitive data as possible and keep it secured. In today's data driven world, that focus has changed. ... Read More
Cisco Survey Demonstrates Financial Benefit of Enterprise Data Security
"Privacy has become an attractive investment even beyond any compliance requirements. Organizations that get privacy right improve their customer relationships, operational efficiency, and bottom-line results." - Cisco Data Privacy Benchmark Study 2020 ... Read More
4 GDPR Violations that Multiple Companies have been Fined for
In a previous post, we looked at the highest GDPR fines to date. We thought it would be interesting to show what instigates fines like these, so now let's explore some common GDPR violations that have already zapped organizations. We looked at the effect, so now let’s look at the ... Read More
Accidental Breaches a Top Concern for IT Security Professionals
A recent Egress survey questioned 500 IT security decision-makers and found that accidental breaches are rife within the industry. Over 70% of respondents recorded an accidental internal breach during the last five years, with half of these incidents occurring within the past year ... Read More
PCI DSS Compliance Lower than Ever
In Verizon’s 2019 Payment Security Report, it was revealed that in 2018 only 36.7% of businesses are fully compliant with the Payment Card Industry Data Security Standard (PCI DSS). Indeed, over the past several years, PCI DSS compliance has been steadily slipping. There is a downward trend since 2016 where ... Read More
Domain Provider ‘Network Solutions’ Announces Data Breach
In a recent statement, the world’s first Internet domain name provider, Network Solutions, revealed that they were the target of a data breach. The company announced that an unknown third-party acquired unauthorized access to some of their computer systems starting in late August 2019. The organization said that they have ... Read More
The Difference Between Format-Preserving Encryption and Tokenization
There is a lot of confusion surrounding this topic and, given recent developments such as the ANSI X9 standard for retail financial services, tokenization can actually be implemented with format-preserving encryption (FPE). In the end, both achieve the same thing, namely, replacing sensitive data with a protected surrogate. However, they ... Read More
