The massive data breaches that have hit the headlines in recent years, including Yahoo, Verizon, and particularly Equifax, have taken a toll on breach victims, consumers, and corporations. This year, breaches could be even more costly for companies once the European Union's General Data Protection Regulation (GDPR) rules are in place come May 25.
Organizations are under the gun to get systems in place now to ensure that they are in compliance with the regulations, before it's too late. Here are six key measures for enterprises to prioritize over the next few months: 1) Protect data beyond your perimeter, expanding use of enterprise security controls is crucial, but end-to-end data protection is one of the most potent safeguards. 2) Make privacy awareness mandatory, by requiring every employee to participate in cybersecurity awareness training and conducting training on an ongoing basis. 3) Ensure secure transmission of data in the cloud. 4) Check the terms and conditions, nearly 40% of cloud services provide terms and conditions that lack specifics around data ownership. 5) Know your data well, what information is being collected, who's collecting it, and who's sharing it throughout the organization. 6) Follow your data, especially if it crosses geopolitical boundaries.