5 tips for preventing data theft

Welcome to this week’s Security Spotlight, where we shine a light on:?

• A new blog on 5 ways to prevent data interception and theft?
• New expert insight into ISO 27001 and physical security?
• A new Q&A on the APRA: a potential US federal data privacy law?
• 24,559,438 records breached in Europe in April?
• An upcoming webinar on adopting AI in compliance with the GDPR?
• A webinar coming up on FastTrack ISO 27001 certification?

5 ways to prevent data interception and theft?

Data interception and data theft are 2 ways for an unauthorised actor to gain access to an organisation’s sensitive information.?

This new blog explains 5 ways you can mitigate the risks, and avoid the financial and reputational damage associated with data theft.?

Read more?

?

Matthew Peers on ISO 27001 and physical security?

When we hear the term ‘information security’ – or, for that matter, ‘ISO 27001’ – our thoughts usually turn straight to cyber security.?

However, physical security is also an important aspect of information and data security. In fact, in the 2022 versions of ISO 27001 and ISO 27002, ‘physical’ is one of just four control themes.?

Matthew Peers, one of our GRC consultants with a background in the British Army Intelligence Corps, shares:?

• Why ‘physical’ is a separate control theme?
• Physical (and logical) access controls and visitor policies?
• Why physical security monitoring needed a new Annex A control?
• The benefits and drawbacks of CCTV as a preventive and detective measure?
• Key considerations around building security – even if you’re a small organisation?
• How to remotely audit physical security?
• Remote-working tips?

Read the full interview?

?

Kirsten Craig on the APRA?

In the US, expectations are cautiously rising that we could see a landmark single federal privacy standard enacted into law: the APRA (American Privacy Rights Act).?

Some people have described the APRA as the American answer to the EU’s GDPR.?

Data privacy lawyer Kirsten Craig explains:?

• What the APRA is, and why this may be a landmark deal?
• The interplay of the APRA with state-specific laws?

• APRA requirements and rights for individuals?
• To whom the APRA would apply?
• APRA and EU GDPR overlaps?
• Next steps for the APRA?

Read the full interview?

?

New report: 24,559,438 records breached in Europe in April?

Our research found over 24 million known records breached in Europe in April, from 100 publicly disclosed incidents.?

Read the full report?

We’ve also updated our annual page for Europe.??

?

Free webinar: How to adopt AI in compliance with the GDPR?

Tuesday, 4 June 2024, 3:00 pm (BST)?

AI has transformed how organisations operate – but also presents a minefield of compliance challenges.?

Data protection laws like the GDPR have shone a spotlight on how organisations handle personal data, particularly when deploying AI systems.?

In this webinar with privacy consultant Mark James, learn:?

• How existing data protection laws like the GDPR regulate AI use?
• Assessing risk and mitigation strategies through DPIAs?
• Key data protection pitfalls to look out for when assessing AI tools?
• Privacy by design as a concept for organisations striving for innovation?
• Our recommendations for AI success?

Register now?

We previously interviewed Mark on deploying AI systems in compliance with data protection laws.?

This webinar will go into more depth, plus you’ll get to put your questions to Mark in a live Q&A.?

?

Free webinar: FastTrack ISO 27001 Certification – Compliance and Continual Improvement?

Wednesday, 26 June 2024, 3:00 pm (BST)?

This webinar focuses on how you can achieve ISO 27001 certification within a remarkable time frame of just 6 months.?

It’ll also explore how to maintain momentum for continual improvement of your ISMS.?

ISO 27001 pioneer Alan Calder will take you through:?

• Streamlining the certification process with FastTrack? expertise?
• Preparing for certification and selecting a certification body?
• Developing a checklist to ensure you have evidence of an ISMS in action?
• Tips for a successful certification audit and maintaining compliance with ISO 27001:2022?
• Strategies for continually improving your ISMS and adapting to changing threats and risks?

Register now?

We previously interviewed Alan about ISO 27001’s business benefits, regulatory compliance, risk assessment and continual improvement.?

This webinar will go into more depth, plus you’ll get to put your questions to Alan in a live Q&A.?

?

Speak to a cyber security expert?

With over 20 years’ experience in cyber security, we understand risk management.?

Our experts have implemented cyber security programmes for hundreds of organisations across a multitude of industries in both the private and public sectors.?

New to the world of cyber security and need advice on how to get started??

Or updating an existing cyber security programme??

Learn how our cyber security experts can hel?