2: At the same time, the amount of data stored is exploding: Information growth is exploding – more and more data to manage. Data growth strains infrastructure & security in every conceivable way, and this will get exponentially worse over time. Major date – 2010 = 1ZB: Such a big number = every man, woman and child tweeting continously for 100 years each. Growing at 62% per year By 2020 will get to 40ZB = there will be as many bytes of data on the planet as stars in the sky!
These trends will not abate - Software and data will only get more persuasive in all of our lives!
GDPR is all about data privacy. There are a number of drivers for privacy, of which the GDPR is just one. You need to get this right to protect your reputation with key stakeholders (eg press, consumers, customers, suppliers, vendors), and doing that can lead to new business opportunities for you.
But it’s not easy. There are some challenges. Data is growing, it’s mobile, it’s stored in places you might not know about (the cloud) and also no-one owns it in your organisations. In parallel, data is valuable so at risk of theft by people both within and outside your organisation. Our ISTR research shows that 49% of data breaches are as a result of an external threat. So you need to look holistically at the issue.
I said privacy is important to customers, let’s look at some research behind that.
If your business involves personal data then privacy needs to be at the core of your business in order to be successful. Historically, businesses have not always focused on privacy in the way that they should. However, increasingly if you don’t prioritise privacy it will impact your chances of success. There has been a framework and regulation around since the 1950s. Although privacy is a business issue, it’s also an emotive issue that can create an instinctive reaction in consumers.
In countries like France and Germany privacy of their personal data is culturally important and failing to look after it can directly affect business. With the increase in breaches, the press headlines that brings and the impact of business reputation protecting the personal data of customers and employees has never been more important. However, we’re working in a world where there are inhibitors to that drive. We haven’t taken ownership of the data we have and it’s growing more as we adopt new technology such as IoT. We need to take ownership for our data and ensure that we protect privacy.
The GDPR is an evolution not a revolution of the existing privacy framework to deal with the inhibitors to privacy whilst protecting EU citizens and residents from abuses which could arise.
This makes IT security and risk management, protecting data whilst enabling the increasingly connected and digital part of the world. IT has never been more relevant to business.
Under GDPR, the “drive for privacy” come first and foremost from: - the idea of privacy being a fundamental right (you can’t fool around with it or take it lightly) - the Accountability principle (you need to prove you do the right thing across the board) - the Privacy by Design principle (you need to build all your products in a certain way) - the Privacy by Default principle (you can only bring your products to market in a certain way) And only then can we go into technicalities like the security and breach notice components, or international data transfers for that matter.
Our State of Privacy report shows that privacy is the most important factor when customers use products and services from an organisation. So you need to be able to both provide data security and demonstrate this to be successful.
Individuals care about privacy. Getting this right is essential to the success of the business.
Getting privacy right will be a competitive advantage for a business, so it’s not just about complying with the regulation, a good privacy focus can provide a real competitive advantage to a business.
This will also pass down through the supply chain. Even if your business doesn’t directly consume customer data a good privacy posture will be important in successfully fulfilling contracts with other companies.
Let’s take a look at how this combination will help our customers. Together we are going to deliver integrated Cyber Defense with: Shared Telemetry and Core Protection Engines across the endpoint, email, data-center and the cloud to deliver formidable cyber defense against the critical threat vectors Cross control point detection & remediation: Advanced Threat Protection will offer an integrated single control panel to detect and remediate the most sophisticated threat Data Loss Prevention and User Authentication extended to the web proxy and over 12,000 web applications through the Blue Coat Cloud Access Security Broker Enterprises can securely embrace the cloud, with a single best in breed provider for all the layers of security you are going to need for the cloud, from and to the cloud.
There is not a CISO in the world that will not be interested in what we will be able to offer.