This post guides CISOs in meeting PCI DSS requirements using Spirion for rapid discovery, accurate classification and automated protection of payment card data.
Learn how leading CISO’s protect their sensitive data on the cloud
Today, all companies in every market segment face a perfect storm of risk as they are besieged by internal, external, regulator and reputational risk. Yet for CISO’s and ISO’s, getting the security budget to combat those threats can be a challenge. The newest report by Price Waterhouse Coopers (PWC)1 provides some undeniable facts that all CISO’s and ISO’s can use to support their security budget and receive the funding they…
Traveling can be stressful enough without worrying about your personal information being leaked when you use your e-ticket. Created to make airline travel for customers more streamlined, some airline e-ticket systems’ can expose customer Personally Identifiable Information (PII) via unencrypted check-in links that hackers can easily intercept. In December, it was discovered that several airlines’ e-ticketing systems were vulnerable, including Southwest, Air France, KLM, Vueling, Jetstar, Thomas Cook, Transavia, and…
Every organization is different and how they handle their sensitive data is just as diverse. But every organization, no matter size or industry, should be asking themselves these 4 questions. Where is Our Sensitive Data and Who has Access? Even highly regulated industries have a tough time identifying data that could be deemed sensitive, much less discerning its sensitivity level. This includes not only personal information but also intellectual property….
The landscape of the traditional perimeter security model is changing as many market segments, such as financial services, march toward digital transformation. Although the traditional approach of using firewalls, VPNs, and NAC technologies is still relevant to internet defenses, additional security solutions such as a Zero Trust model is necessary to mitigate malware, attack, breach, and data leakage assaults. These zero trust models utilize authentication, authorization, and verification controls for…
It’s startling, but in 2017 more than 16 million Americans reported having their identities stolen. In response, federal and state governments, and industry regulators have enacted laws requiring organizations to improve their handling of sensitive data and have stipulated stiff monetary and licensing penalties for those that do not comply. Like identity fraud, one of the most valuable targets for cyber attacks is data-at-rest due to the immense amount of…
Valley Hope Association’s mission is to help people overcome their dependence on alcohol and drugs. At their 16 addiction treatment centers, therapists and staff focus on helping people remove the triggers that drive their addictions in a safe and secure environment. But like so many non-profits, Valley Hope’s good intentions for protecting their patients weren’t enough to prevent hackers from exploiting their IT security weakness. Last week, 70,000 Valley Hope…
With all the focus on compliance requirements—PII, PCI-DSS, HIPAA, GDPR, and a plethora of other regulations—one of your company’s most important assets may be getting overlooked when it comes to data security: your intellectual property (IP). Accounting for more than 80% of market value, IP is one of your most important assets. It’s time you take the steps to protect this precious commodity. Step 1. Identify Copyrights and trademarks are…
The well-supported adage is that it takes years to get a loyal customer and only seconds to lose them. One of the biggest mistakes you can make is putting your customers’ personal information at risk. A recent survey conducted by Ping Identity reveals many consumers are making drastic changes to the ways they interact with companies and secure their own personal data following a breach: 78% would stop engaging with…