If you’ve ever participated in an organized sport, you’re likely well aware of the importance of context when it comes to evaluating your performance as a player. Say, for example, I play soccer every weekend (which I do). Let’s imagine I’m arguably the best defender on my team – or even across all the recreational […]
Read moreRadarFirst Blog
On Our Radar: October 24, 2019
Another week has gone by, and with it another news cycle filled with examples of recent data breaches, hacking attacks, and regulatory enforcements. Does it feel like our work as privacy professionals is enjoying a little too much of the limelight these days?
Read moreBuilt to Win: 5 Steps of a Proactive Incident Response Plan that Works
Privacy and security incidents involving sensitive personal data are as individual as fingerprints. An incident involving misplaced paper records is vastly different from a large-scale cyber-attack affecting millions of people. Yet the organization with the paper incident and the organization with the cyber-attack are both subject to a complex web of global data breach notification […]
Read moreChanging Data Breach Laws: The New York SHIELD Act
Earlier this year, New York Governor Andrew Cuomo signed into law the Stop Hacks and Improve Electronic Data Security Act (SHIELD Act), amending New York State’s existing data breach notification law and creating new data security requirements for businesses collecting private information on New York Residents.
Read moreOn Our Radar: October 11, 2019
It probably isn’t often that the world of privacy professionals is likened to a soap opera. However, if you really think about it, is the privacy world really all that far off from this genre of daytime television? The melodrama. The suspense. The evil twins!
Read moreIncident response ROI: Benchmarking data to secure budget, prove value
Around the office the last few months, we’ve taken to referencing a famous quote by Arthur Nielsen: “the price of light is less than the cost of darkness.”
Read moreOn Our Radar: October 4, 2019
Over the last couple On our Radar posts, my colleagues have covered two industries that hold some of our most personal and sensitive information; healthcare and financial services. Today I wanted to dig into another industry that experiences unique regulatory challenges when it comes to protecting personally identifiable information, both PHI and PII: the insurance […]
Read moreThe CISO’s Guide to Mitigating Enterprise Risk with Privacy by Design
In the good old days, CISOs were all about security. They served as guardians at the gate and protectors of the perimeter. As technology evolved, so did the CISO’s role. One of the most significant impacts on today’s CISOs, however, has nothing to do with mobile devices, malware, or the Internet of Things (IoT).
Read moreOn Our Radar: September 27, 2019
This week has really been one for the books.
Read moreWhy Security Needs Privacy to Succeed on the Job (and Vice Versa)
With GDPR, the California Consumer Privacy Act (CCPA), and other high-profile regulations making waves these days, privacy is a hot topic. Despite this, some security professionals may not immediately consider privacy to be relevant to their function within the organization.
Read more