Adding Data Security to Your Off-Boarding Checklist

Every time an employee leaves the company, whether willingly or unwillingly, HR has a checklist to complete. Not only are you responsible for coordinating their departure and replacement with their team, supervisor, and subordinates, but there is also an incredible amount of data management to do. This was one of your flock, one of the […]

Read More

Lessons from the OPM Data Breach

In 2015, the US government’s Office of Personnel Management (OPM) reported data breaches that affected millions of applicants and employees. It was the worst data breach in history in a human resources department. Most of the news coverage focused on the politics of the attack, which came from China. From the standpoint of HR departments, […]

Read More

Encrypt Everything!? Maybe not.

I was working as a Security Architect when the Director of Strategy and Architecture made the announcement that our latest strategy was to “Encrypt Everything”. This was a telecoms company with a distributed IT infrastructure, thousands of staff, and a huge number of networks. The volume of confidential documents created daily numbered in the thousands, […]

Read More

The Problem with Data Security

Data breaches are a huge problem and one that’s still growing. In the United States alone, over 20 million records were stolen in the first two months of 2018, and those are the ones that we know about due to disclosure. It’s fair to wonder why this is happening, and what the true scale of […]

Read More

DLP as part of a Data-Centric Security Strategy

Strategies usually have a short discussion window for Executive approval, and it is the job of the CISO to get complex security messages across to the board. Boards typically understand Risk, Finance, and, rarely, there are technical board members who understand IT. Security is a difficult combination of these concepts, focused on protecting the most […]

Read More