Wednesday, May 9, 2012

upcoming EU Data Protection update

here is a head start as the draft is ready already:

  1. merging of COPPA law from US.
  2. inclusive of non-EU company who may not have a entity in Europe to require a Data Protection Officer.
  3. opt-in instead of opt-out for all processing of data. (this could change UI).
  4. require of notification of beach in 24 hours
  5. impose penalties of up to 2 % of a company’s worldwide turnover in case of severe data protection breaches. 

Thursday, May 3, 2012

CISO and IT are starting to merge into one org.

This is a natural progression as security becomes more involved in day to day operations as well as production. I think we will see numerous title changes and org restructuring. Director of IT Security, Security Admins vs. IT admins etc.