New figures from jobs site Indeed this week reveal that vacancies for Data Protection Officers (DPOs) have soared by 709% in the two years since the EU General Data Protection Regulation (GDPR) was ratified two years back. It’s a shame that, with so long to prepare, organisations are only now wising up to the implications of the region-wide privacy law. Our own research has shown that many other areas of investment are also lacking.
What are needed most now are cool heads and a long-term, strategic approach to GDPR compliance. Racing to finish before the May 25 deadline could lead to mistakes and gaps which may cause more harm than good. Think of this as a continuous process, not a one-off Y2K-style effort. Continue reading →
UK police forces have spent more than £1.3m on cybercrime training over the past three years, according to a new thinktank report. This is great to see, especially considering the escalating threat to consumers and businesses as the nation and its economy become increasingly dependent on digital systems.
But as cybercrime soars while public funding shrinks, law enforcers also need to make the most of private sector partnerships, like the ground-breaking alliance Trend Micro has forged over recent years with the country’s pre-eminent crime agency. Continue reading →
Consumers and cybersecurity professionals around the world have been stunned by Uber’s revelation that it paid hackers $100,000 to delete data on 57 million users stolen last year. There are many strands to the case, and more details are likely to emerge over time. But fundamentally it highlights the need for firms to secure their cloud environments as rigorously as anything on premise.
The EU General Data Protection Regulation (GDPR) is a lengthy piece of legislation, even by European Commission standards. If nothing else, this drives home just how far-reaching and detailed it is. Yet many organisations currently grappling with compliance find it frustratingly short on some of the most important details. New Trend Micro research has found that confusion over some of the key terms in the legislation could mean many aren’t implementing the right cyber-security technologies to keep them compliant.
Layered security is the only way to ensure maximum threat protection, although we’d also encourage regulators to ease the compliance burden by providing more clarity to organisations. Continue reading →