The EU General Data Protection Regulation (GDPR) is a lengthy piece of legislation, even by European Commission standards. If nothing else, this drives home just how far-reaching and detailed it is. Yet many organisations currently grappling with compliance find it frustratingly short on some of the most important details. New Trend Micro research has found that confusion over some of the key terms in the legislation could mean many aren’t implementing the right cyber-security technologies to keep them compliant.
Layered security is the only way to ensure maximum threat protection, although we’d also encourage regulators to ease the compliance burden by providing more clarity to organisations. Continue reading →
Regulator the US Food and Drug Administration (FDA) has just released new security guidance for medical device manufacturers as part of a major push to improve information security in the healthcare sector there. With its recommendations to follow industry frameworks like NIST, improve information sharing and adopt best practices around vulnerability disclosures, it’s a long overdue and positive step from the agency. So what of the UK’s healthcare sector?
With the EU General Data Protection Regulation (GDPR) fast approaching, I’m afraid to say things are still far from where they should be. Healthcare is by a country mile the worst offender when it comes to data security incidents. It’s time that changed. Continue reading →