On 28th May 2018, the European Union (EU) General Data Protection Regulation (GDPR) will come into force with harsh fines and onerous implications. The primary goal of GDPR is to harmonize the protection of personal data across all EU member states. It will have an impact in the EU and around the world, affecting any organization that handles the personal data of EU residents. Don’t let that seemingly distant date delay you from starting to prepare.
TITUS account executives encounter many organizations – large and small – who believe “basic” classification is enough. They believe that, because they are just beginning with classification, they don’t need a solution as powerful as TITUS and that they can get by with a simple marking tool akin to a digital rubber stamp. Once we probe deeper into these organization’s unique requirements, workflow, and environment we find that “basic” classification is in fact an illusion.
Recently, a colleague of mine attended the 2016 CISO Leadership Forum in San Francisco where he had the opportunity to listen to Steve Zalewski, Chief Security Architect for Levi Strauss & Co., discuss the state of his cybersecurity resources. “I don’t need more hammers,” Mr. Zalewski stated, “I need more people to swing them.” The current shortage of cybersecurity experts is creating a “perfect storm” that could spell data disaster for a lot of organizations, both public and private. While cyber threats are growing more sophisticated and dangerous, a recent Cisco report highlights that there are 1 million open cybersecurity positions globally. This is a significant talent gap that is not going to be remedied quickly and is already causing significant difficulties.
So where can a data security team find more people to swing the data security hammers?
As a Brit who thinks our country is great, but also a European who spends a large part of his time travelling around the continent, I was shocked to find that the UK electorate voted to leave the European Union! If I’m honest with myself, I didn’t see it coming. My general impression of the British public is that, on the whole, we are conservative with a small “c” and typically vote to maintain the status quo. – the grass is very rarely greener…
This week, the TITUS team is heading to Singapore where we are excited to be exhibiting at RSA Asia Pacific & Japan 2016. Look for TITUS at booth E24.
TITUS has a great history in this region, as the Australian Federal Government was the very first TITUS customer over a decade ago – quite the achievement for our Canadian-based company. Over the past 10 years, we have continued to grow and expand our customer base in this region. And we are pleased to now have a dedicated team based in-market who will support our customers and continue to help accelerate our growth. Read the rest of this entry »
What would happen within your organization if it was faced with the unenviable process of e-discovery? Calm, quick assembly of relevant information, or pure chaos? My guess is that it would lean heavily towards the latter; in fact, many companies are opting to settle out of court rather than deal with the resourcing and financial hardships which come from the process of e-discovery.
Why? Because companies are sitting on huge piles of data; sure, much of it is relevant business information, but I’d wager that a large percentage is ROT (redundant, outdated, and trivial). This type of data comes from the many versions of files created but never deleted, documents from employees who have long since left the company and are no longer useful, and the myriad of files which were once useful but have long since passed their shelf life (marketing campaigns from 6 years ago, anyone?).
I think that I communicate with my colleagues almost as much via email as through verbal communications – even those I share an office with. In fact, probably about a third of the verbal communications are social interaction rather than direct business discussion. In email, however, most of the communication with my colleagues contains business information, sometimes including large attachments containing sensitive strategic plans. And unlike a verbal conversation which is lost to the ether, email endures. So, while talking about business plans outside the office where someone might overhear has some risk to the company, sending an email to the wrong recipient can be significantly more damaging. Yet, organizations are still not protecting themselves from these accidental breaches.
As a case in point I offer you this example from the National Football League (NFL). It is reported that on July 1st, the New Orleans Saints intended to send an email to the NFL head office regarding their plans to pick up a player who was just put on waivers (released) by the Cleveland Browns. The email, however, was accidentally addressed to the entire league. In other words, they broadcast their plan to all of their competition.
I recently decided to switch from my iPhone to an Android device (LG G4). It wasn’t system functionality that made me switch to Android, but the price (and the ability to swap batteries). However, I now have to face the fact that I have lost some of the functionality I was used to, and some of the apps I used daily. For organizations that have a bring-your-own-device (BYOD) policy like TITUS does, it is important that your business apps support key functionality across platforms.
I often collaborate with colleagues using a Box folder to share files. With TITUS Classification for Mobile, I am still able to access the Box folder from my Android mobile as I had on iOS. Read the rest of this entry »
In the few short years I have been with TITUS, I have experienced a transition from having to educate organizations about “why classification is important” to explaining how TITUS will make their classification initiative a success. With the rapid growth in the classification market comes some fun dynamics such as new competition, new partnership opportunities and even new ways of looking at the definition of what data classification means.
Data classification was recently added on two different Gartner hype cycles: Information Governance, and Data Security. This suggests there are many ways that vendors position data classification solutions, which can create confusion for those looking to classify their data. Knowing your data is foundational to both information governance and data security; the challenge is knowing if the classification solution you are considering meets both your immediate and future requirements.