Wednesday, May 9, 2012

upcoming EU Data Protection update

here is a head start as the draft is ready already:


  1. merging of COPPA law from US.
  2. inclusive of non-EU company who may not have a entity in Europe to require a Data Protection Officer.
  3. opt-in instead of opt-out for all processing of data. (this could change UI).
  4. require of notification of beach in 24 hours
  5. impose penalties of up to 2 % of a company’s worldwide turnover in case of severe data protection breaches. 



Thursday, May 3, 2012

CISO and IT are starting to merge into one org.

http://www.securityweek.com/ibm-study-ciso-role-evolving-more-intense-ever

This is a natural progression as security becomes more involved in day to day operations as well as production. I think we will see numerous title changes and org restructuring. Director of IT Security, Security Admins vs. IT admins etc.