As CSOs head into 2018, many are wondering what the next big attack will look like and how it will affect their businesses. At the same time, heightened scrutiny of data practices has these executives laser focused on how they store and protect vital customer information.
With new legislation coming into play in 2018 and the constant onslaught of ever-changing threats, it can be hard to determine where one should concentrate cyber efforts.
If the biggest threats of 2017 taught us anything, it is that investing in multiple technologies alone isn’t enough – enterprises can strengthen their proactive security efforts by improving cybersecurity training. In 2018, it will be critical to educate cyber staff, the first line of defense, on the current data privacy legislation to ensure sensitive data doesn’t fall into the wrong hands, and to avoid costly fines.
Also, training cyber professionals on defensive and offensive cyber-attack strategies will ensure they can more quickly and efficiently identify and mitigate emerging threats. Finally, fake news as a key attack vector should not be underestimated and CSOs should ensure their cyber teams understand this threat and how to identify it. Focusing on these three priorities will give cyber teams an edge during the coming year.
Privacy Takes Center Stage in 2018
Top of mind for many CSOs is the European Union General Data Protection Regulation (GDPR), which goes into effect May 25, 2018, requiring tighter consumer data protection. So, what does GDPR mean for cyber teams? A few things, but perhaps most important, it will be essential for cyber teams to fully understand how much and what kind of personal data related to EU users/customers is stored or shared, where it lies and who has access.
So, what does GDPR mean for cyber teams? A few things, but perhaps most important, it will be essential for cyber teams to fully understand how much and what kind of personal data related to EU users/customers is stored or shared, where it lies and who has access.