Access your Pro+ Content below.
Navigating international data privacy laws
This article is part of the May 2011 issue of Information Security magazine
With the global economic downturn, economies of scale are of increasing importance, and to achieve cost synergies, many companies have shed their geographic silos in favor of a streamlined centralized data infrastructure. Far more multinational companies with offices on all continents and production facilities in multiple countries share centralized databases, processing capabilities, and even IT support teams that make integrated production possible on a 24/7 basis. While we have seen many industries such as life sciences, real estate and entertainment streamline their IT operations, all have one item in common -- they store personal employee, customer, supplier and website visitor data. With the myriad data privacy, security and management laws that exist in the U.S. and abroad, data privacy compliance can be a difficult area to navigate. By now, most companies understand that U.S. federal, state and local governments have weaved an intricate web of laws protecting many aspects of Americans’ privacy (i.e., banking, telecom ...
Features in this issue
Companies should revisit streamlined global data operations with an eye toward revamping compliance.
Cybercriminals are using social engineering fueled by social media to attack users and break into companies.
A strong information security program that goes beyond minimum standards will ease compliance.
New security tools allow companies to extend encryption and authentication to mobile devices.
Columns in this issue
There’s growing demand for information security professionals, but where will these skilled people come from?
Remember, potential new security roles are doled out based on experience and accomplishments, not some fancy title.
Companies need to improve their employee security awareness training to fight today’s threats.