|By Business Wire||
|January 28, 2013 08:07 AM EST||
ISACA, a nonprofit association, marked Data Privacy Day with the announcement of a global task force on data privacy that will address the needs of businesses and government organizations worldwide. The Privacy Advisory Task Force will drive research, guidance and advocacy, and will help IT security, risk, governance and assurance professionals use the COBIT framework to manage the rapidly growing issues related to the use of information online.
Compromised data can be costly, averaging $5.5 million per organization, according to the seventh annual Ponemon Cost of a Data Breach report. Enterprises also face rising regulatory pressures. In the US, potential changes include the proposed APPS Act, which would obligate mobile application developers to be more transparent about the use of personal data; the Federal Trade Commission’s adoption of amendments to the Children’s Online Privacy Protection Rule (COPPA); and the long-awaited final omnibus rule on HIPAA from Health & Human Services, which expands liability for businesses (and their subcontractors). Organizations conducting business in Europe face the proposed EU General Data Protection Regulation, a sweeping plan to standardize privacy requirements across all EU countries.
ISACA analysis shows that these challenges are amplified for multinational companies by the absence of global standards and the rise of mobile devices and cloud computing, which make it easy for data to travel across borders. Yet ISACA’s 2012 IT Risk/Reward Barometer revealed that only 16 percent of organizations forbid cross-border travel with company data on mobile devices.
“The current debate about data privacy is just the tip of the iceberg. As technologies like Big Data and mobile devices keep making it easier to offer better customer service and online access, enterprises will experience growing pressure to collect and share private information,” said Jeff Spivey, CRISC, CPP, PSP, international vice president, ISACA, and vice president, RiskIQ. “Companies want guidance on how to strike the right balance between profiting from data and protecting data.”
As a Data Privacy Day Champion, ISACA recognizes that organizations have a responsibility to secure their part of cyber space and the networks they use. ISACA’s Privacy Advisory Task Force will focus on defining and prioritizing the knowledge needs and services valued by those who manage or support privacy initiatives. ISACA members include chief privacy officers (CPOs) and chief information security officers (CISOs) from a range of Fortune 500 companies. Task force participants represent all regions worldwide and will be announced in February 2013.
“NCSA is pleased ISACA is supporting Data Privacy Day and providing a larger year-round strategy and offerings to help businesses and government organizations manage data privacy issues from an IT risk perspective. Respecting privacy and safeguarding data are responsibilities we all share,” said Michael Kaiser, executive director, National Cyber Security Alliance.
ISACA’s privacy guidance includes:
- Joint training with Deloitte & Touche—“Introduction to Privacy and Data Protection”
- Personally Identifiable Information (PII) Audit/Assurance Program
- Dedicated privacy community within the ISACA Knowledge Center
- Educational sessions at the North America CACS Conference (15-17 April, Dallas, Tex.): “Privacy Risk Assessment in Cloud Computing” (KPMG) and “Barbarians at the Gate: Taming Global Privacy Requirements” (workshop by Deloitte & Touche)
With 100,000 constituents worldwide, ISACA (www.isaca.org) is a nonprofit association providing knowledge, certifications and education on information systems assurance and security, enterprise governance and management of IT, and IT-related risk and compliance. ISACA offers the CISA, CISM, CGEIT and CRISC certifications and developed COBIT.
SYS-CON Events announced today that GENBAND, a leading developer of real time communications software solutions, has been named “Silver Sponsor” of SYS-CON's WebRTC Summit, which will take place on June 9-11, 2015, at the Javits Center in New York City, NY. The GENBAND team will be on hand to demonstrate their newest product, Kandy. Kandy is a communications Platform-as-a-Service (PaaS) that enables companies to seamlessly integrate more human communications into their Web and mobile applicatio...
Feb. 28, 2015 05:00 PM EST Reads: 1,288
VictorOps is making on-call suck less with the only collaborative alert management platform on the market. With easy on-call scheduling management, a real-time incident timeline that gives you contextual relevance around your alerts and powerful reporting features that make post-mortems more effective, VictorOps helps your IT/DevOps team solve problems faster.
Feb. 28, 2015 05:00 PM EST Reads: 1,129
Skeuomorphism usually means retaining existing design cues in something new that doesn’t actually need them. However, the concept of skeuomorphism can be thought of as relating more broadly to applying existing patterns to new technologies that, in fact, cry out for new approaches. In his session at DevOps Summit, Gordon Haff, Senior Cloud Strategy Marketing and Evangelism Manager at Red Hat, will discuss why containers should be paired with new architectural practices such as microservices ra...
Feb. 28, 2015 04:00 PM EST Reads: 1,342
Roberto Medrano, Executive Vice President at SOA Software, had reached 30,000 page views on his home page - http://RobertoMedrano.SYS-CON.com/ - on the SYS-CON family of online magazines, which includes Cloud Computing Journal, Internet of Things Journal, Big Data Journal, and SOA World Magazine. He is a recognized executive in the information technology fields of SOA, internet security, governance, and compliance. He has extensive experience with both start-ups and large companies, having been ...
Feb. 28, 2015 04:00 PM EST Reads: 1,043
Companies today struggle to manage the types and volume of data their customers and employees generate and use every day. With billions of requests daily, operational consistency can be elusive. In his session at Big Data Expo, Dave McCrory, CTO at Basho Technologies, will explore how a distributed systems solution, such as NoSQL, can give organizations the consistency and availability necessary to succeed with on-demand data, offering high availability at massive scale.
Feb. 28, 2015 03:45 PM EST Reads: 2,174
From telemedicine to smart cars, digital homes and industrial monitoring, the explosive growth of IoT has created exciting new business opportunities for real time calls and messaging. In his session at @ThingsExpo, Ivelin Ivanov, CEO and Co-Founder of Telestax, shared some of the new revenue sources that IoT created for Restcomm – the open source telephony platform from Telestax. Ivelin Ivanov is a technology entrepreneur who founded Mobicents, an Open Source VoIP Platform, to help create, de...
Feb. 28, 2015 03:30 PM EST Reads: 3,962
The industrial software market has treated data with the mentality of “collect everything now, worry about how to use it later.” We now find ourselves buried in data, with the pervasive connectivity of the (Industrial) Internet of Things only piling on more numbers. There’s too much data and not enough information. In his session at @ThingsExpo, Bob Gates, Global Marketing Director, GE’s Intelligent Platforms business, to discuss how realizing the power of IoT, software developers are now focu...
Feb. 28, 2015 03:15 PM EST Reads: 1,218
Security can create serious friction for DevOps processes. We've come up with an approach to alleviate the friction and provide security value to DevOps teams. In her session at DevOps Summit, Shannon Lietz, Senior Manager of DevSecOps at Intuit, will discuss how DevSecOps got started and how it has evolved. Shannon Lietz has over two decades of experience pursuing next generation security solutions. She is currently the DevSecOps Leader for Intuit where she is responsible for setting and driv...
Feb. 28, 2015 03:00 PM EST Reads: 2,148
Operational Hadoop and the Lambda Architecture for Streaming Data Apache Hadoop is emerging as a distributed platform for handling large and fast incoming streams of data. Predictive maintenance, supply chain optimization, and Internet-of-Things analysis are examples where Hadoop provides the scalable storage, processing, and analytics platform to gain meaningful insights from granular data that is typically only valuable from a large-scale, aggregate view. One architecture useful for capturing...
Feb. 28, 2015 02:00 PM EST Reads: 1,195
SYS-CON Events announced today that Vitria Technology, Inc. will exhibit at SYS-CON’s @ThingsExpo, which will take place on June 9-11, 2015, at the Javits Center in New York City, NY. Vitria will showcase the company’s new IoT Analytics Platform through live demonstrations at booth #330. Vitria’s IoT Analytics Platform, fully integrated and powered by an operational intelligence engine, enables customers to rapidly build and operationalize advanced analytics to deliver timely business outcomes ...
Feb. 28, 2015 01:45 PM EST Reads: 1,125
DevOps is about increasing efficiency, but nothing is more inefficient than building the same application twice. However, this is a routine occurrence with enterprise applications that need both a rich desktop web interface and strong mobile support. With recent technological advances from Isomorphic Software and others, it is now feasible to create a rich desktop and tuned mobile experience with a single codebase, without compromising performance or usability.
Feb. 28, 2015 01:15 PM EST Reads: 1,013
Thanks to Docker, it becomes very easy to leverage containers to build, ship, and run any Linux application on any kind of infrastructure. Docker is particularly helpful for microservice architectures because their successful implementation relies on a fast, efficient deployment mechanism – which is precisely one of the features of Docker. Microservice architectures are therefore becoming more popular, and are increasingly seen as an interesting option even for smaller projects, instead of bein...
Feb. 28, 2015 01:15 PM EST Reads: 2,383
SYS-CON Events announced today Arista Networks will exhibit at SYS-CON's DevOps Summit 2015 New York, which will take place June 9-11, 2015, at the Javits Center in New York City, NY. Arista Networks was founded to deliver software-driven cloud networking solutions for large data center and computing environments. Arista’s award-winning 10/40/100GbE switches redefine scalability, robustness, and price-performance, with over 3,000 customers and more than three million cloud networking ports depl...
Feb. 28, 2015 01:00 PM EST Reads: 1,473
Application metrics, logs, and business KPIs are a goldmine. It’s easy to get started with the ELK stack (Elasticsearch, Logstash and Kibana) – you can see lots of people coming up with impressive dashboards, in less than a day, with no previous experience. Going from proof-of-concept to production tends to be a bit more difficult, unfortunately, and it tends to gobble up our attention, time, and money. In his session at DevOps Summit, Otis Gospodnetić, co-author of Lucene in Action and founder...
Feb. 28, 2015 01:00 PM EST Reads: 1,247
The speed of software changes in growing and large scale rapid-paced DevOps environments presents a challenge for continuous testing. Many organizations struggle to get this right. Practices that work for small scale continuous testing may not be sufficient as the requirements grow. In his session at DevOps Summit, Marc Hornbeek, Sr. Solutions Architect of DevOps continuous test solutions at Spirent Communications, will explain the best practices of continuous testing at high scale, which is r...
Feb. 28, 2015 01:00 PM EST Reads: 1,080