SYS-CON MEDIA Authors: Yeshim Deniz, Elizabeth White, Pat Romanski, Liz McMillan, William Schmarzo

News Feed Item

OneTrust Joins Cloud Security Alliance to Simplify Vendor Risk Management for GDPR Compliance

Announced at RSA USA Conference, Partnership Simplifies GDPR Requirements into Organizations' Existing CSA Framework

Also at RSA USA, Cyber Defense Magazine Awarded OneTrust with Two InfoSec Awards

SAN FRANCISCO, April 16, 2018 /PRNewswire/ -- Today at RSA USA Conference, OneTrust, a global leader in enterprise privacy management software that supports compliance with data privacy regulations, announced it joined the Cloud Security Alliance (CSA), the world's leader in secure cloud computing best practices. Additionally, Cyber Defense Magazine announced OneTrust earned two top InfoSec Awards for Privacy Management Software and Privacy Expert of the Year.

As a CSA partner, OneTrust streamlines Vendor Risk Management by incorporating General Data Protection Regulation (GDPR) requirements for third-party vendor assessments into an organization's pre-existing CSA assessment framework. In conjunction, OneTrust announced a first-of-its-kind cloud vendor assessment framework to audit the security controls and privacy program maturity of third-party vendors. The framework assesses third-party vendors to help them meet both the requirements of the General Data Protection Regulation (GDPR) and the necessary cloud vendor security controls as outlined by the CSA.

Leveraging third-party cloud service providers is critical to business operations, and many organizations utilize CSA assessment frameworks when evaluating the security risk of vendors. This assessment process will become increasingly complex as cloud vendors take on the role of processors under GDPR, making them accountable for a variety of new data protection obligations. 

As part of CSA, OneTrust's template library is extended to include CSA-approved security assessments for vendors. Available in the OneTrust template library, OneTrust customers can now utilize the comprehensive GDPR compliance and CSA vendor security template, which combines both OneTrust and CSA best practices.

"OneTrust's mission is to help organizations simplify their privacy programs and achieve regulatory compliance," said Blake Brannon, Vice President of Products, OneTrust. "Our integrations with CSA's framework and assessments helps us further this mission and provide streamlined templates for vendor risk management and cloud security compliance."

"We're excited to welcome OneTrust to the Cloud Security Alliance," said Jim Reavis, CEO, Cloud Security Alliance.  "As a leader in privacy management software, many OneTrust customers will now benefit from CSA's guidance and best practices to support third-party cloud service provider assessment obligations under GDPR."

Also at RSA USA, Cyber Defense Magazine awarded OneTrust with two InfoSec Award wins for Privacy Expert of the Year (Editor's Choice) and Privacy Management Software (Hot Company).
Visit OneTrust at RSA USA Conference at booth #4800 and hear OneTrust and Uber discuss "How to Tackle the GDPR: A Typical Privacy and Security Roadmap" on Tuesday, 17 April at 1:00 PM PDT in Moscone West Room 2014 and 3:30 PM PDT in Moscone West Room 2005.

For additional information, or to request a live OneTrust Privacy Management Software demo, visit OneTrust.com or email [email protected].

About OneTrust
OneTrust's privacy management software is used by more than 1,500 organizations to comply with data privacy regulations across sectors and jurisdictions, including the EU GDPR and ePrivacy (Cookie Law).

The multi-lingual software is deployed in an EU cloud or on-premise, and is based on a combination of intelligent scanning, regulator guidance-based questionnaires, and automated workflows used together to automatically generate the record keeping required for an organization to demonstrate compliance to regulators and auditors.

OneTrust helps organizations implement GDPR requirements, including: Data Protection by Design (PbD), Data Protection Impact Assessments (PIA / DPIA), Vendor Risk Management, Incident and Breach Management, Records of Processing (Data Mapping), Universal Consent and Preference Management, ePrivacy Cookie Consent, Data Subject Access, Portability, and Right to Be Forgotten.

About the Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world's leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, certification, events and products. CSA's activities, knowledge and extensive network benefit the entire community impacted by cloud — from providers and customers, to governments, entrepreneurs and the assurance industry — and provide a forum through which diverse parties can work together to create and maintain a trusted cloud ecosystem.  CSA has developed the definitive best practices for the industry, such as the "Security Guidance for Critical Areas of Focus in Cloud Computing", the "Cloud Controls Matrix", "Top Threats to Cloud Computing" and 50 other cloud security research artifacts. For further information, visit us at www.cloudsecurityalliance.org.

About Cyber Defense Magazine
With over 1.2 Million annual readers and growing, Cyber Defense Magazine is the premier source of IT Security information. We are managed and published by and for ethical, honest, passionate information security professionals. Our mission is to share cutting-edge knowledge, real-world stories and awards on the best ideas, products and services in the information technology industry. We deliver electronic magazines every month online for free, and limited print editions exclusively for the RSA conferences and our paid subscribers. Learn more about us at http://www.cyberdefensemagazine.com. CDM is a proud member of the Cyber Defense Media Group.

Media Contact: 
Gabrielle Ferree
Public Relations
+1 770-294-4668
[email protected]

 

Logo - https://mma.prnewswire.com/media/478210/OneTrust_Logo.jpg

 

More Stories By PR Newswire

Copyright © 2007 PR Newswire. All rights reserved. Republication or redistribution of PRNewswire content is expressly prohibited without the prior written consent of PRNewswire. PRNewswire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
We are in a digital age however when one looks for their dream home, the mortgage process can take as long as 60 days to complete. Not what we expect in a time where processes are known to take place swiftly and seamlessly. Mortgages businesses are facing the heat and are in immediate need of upgrading their operating model to reduce costs, decrease the processing time and enhance the customer experience. Therefore, providers are exploring multiple ways of tapping emerging technologies to solve ...
If a machine can invent, does this mean the end of the patent system as we know it? The patent system, both in the US and Europe, allows companies to protect their inventions and helps foster innovation. However, Artificial Intelligence (AI) could be set to disrupt the patent system as we know it. This talk will examine how AI may change the patent landscape in the years to come. Furthermore, ways in which companies can best protect their AI related inventions will be examined from both a US and...
This session describes how Professional Services organisations can deliver within Technology-as-a-Service (IaaS) constructs, in private and public enterprise cloud scenarios. See how professional services can be packaged and funded by IaaS cash flows, based upon consumption of technology services. Learn how significant, IT infrastructure transformations can be funded through OPEX spending models with multi-year As-a-Services based contracts. Understand how the automation of repeatable services c...
"Calligo is a cloud service provider with data privacy at the heart of what we do. We are a typical Infrastructure as a Service cloud provider but it's been designed around data privacy," explained Julian Box, CEO and co-founder of Calligo, in this SYS-CON.tv interview at 21st Cloud Expo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
DXWorldEXPO LLC announced today that the upcoming DXWorldEXPO | DevOpsSUMMIT | CloudEXPO New York will feature 10 companies from Poland to participate at the "Poland Digital Transformation Pavilion" on November 12-13, 2018. Polish Digital Transformation companies which will exhibit at CloudEXPO | DevOpsSUMMIT | DXWorldEXPO include All in Mobile, dhosting, Cryptomage, Perfect Gym, Polcom, Apius Technologies, Aplisens, ELZAB SA, TELDAT, and Rebug.io.
Enterprises are universally struggling to understand where the new tools and methodologies of DevOps fit into their organizations, and are universally making the same mistakes. These mistakes are not unavoidable, and in fact, avoiding them gifts an organization with sustained competitive advantage, just like it did for Japanese Manufacturing Post WWII.
Organize your corporate travel faster, at lower cost. Hotailors is a next-gen AI-powered travel platform. What is Hotailors? Hotailors is a platform for organising business travels that grants access to the best real-time offers from 2.000.000+ hotels and 700+ airlines in the whole world. Thanks to our solution you can plan, book & expense business trips in less than 5 minutes. Accordingly to your travel policy, budget limits and cashless for your employees. With our reporting, int...
There's no doubt that blockchain technology is a powerful tool for the enterprise, but bringing it mainstream has not been without challenges. As VP of Technology at 8base, Andrei is working to make developing a blockchain application accessible to anyone. With better tools, entrepreneurs and developers can work together to quickly and effectively launch applications that integrate smart contracts and blockchain technology. This will ultimately accelerate blockchain adoption on a global scale.
DXWorldEXPO LLC announced today that Nutanix has been named "Platinum Sponsor" of CloudEXPO | DevOpsSUMMIT | DXWorldEXPO New York, which will take place November 12-13, 2018 in New York City. Nutanix makes infrastructure invisible, elevating IT to focus on the applications and services that power their business. The Nutanix Enterprise Cloud Platform blends web-scale engineering and consumer-grade design to natively converge server, storage, virtualization and networking into a resilient, softwar...
Cloud-enabled transformation has evolved from cost saving measure to business innovation strategy -- one that combines the cloud with cognitive capabilities to drive market disruption. Learn how you can achieve the insight and agility you need to gain a competitive advantage. Industry-acclaimed CTO and cloud expert, Shankar Kalyana presents. Only the most exceptional IBMers are appointed with the rare distinction of IBM Fellow, the highest technical honor in the company. Shankar has also receive...
In his general session at 19th Cloud Expo, Manish Dixit, VP of Product and Engineering at Dice, discussed how Dice leverages data insights and tools to help both tech professionals and recruiters better understand how skills relate to each other and which skills are in high demand using interactive visualizations and salary indicator tools to maximize earning potential. Manish Dixit is VP of Product and Engineering at Dice. As the leader of the Product, Engineering and Data Sciences team at D...
The digital transformation is real! To adapt, IT professionals need to transform their own skillset to become more multi-dimensional by gaining both depth and breadth of a wide variety of knowledge and competencies. Historically, while IT has been built on a foundation of specialty (or "I" shaped) silos, the DevOps principle of "shifting left" is opening up opportunities for developers, operational staff, security and others to grow their skills portfolio, advance their careers and become "T"-sh...
In his session at 21st Cloud Expo, Michael Burley, a Senior Business Development Executive in IT Services at NetApp, described how NetApp designed a three-year program of work to migrate 25PB of a major telco's enterprise data to a new STaaS platform, and then secured a long-term contract to manage and operate the platform. This significant program blended the best of NetApp’s solutions and services capabilities to enable this telco’s successful adoption of private cloud storage and launching o...
Despite being the market leader, we recognized the need to transform and reinvent our business at Dynatrace, before someone else disrupted the market. Over the course of three years, we changed everything - our technology, our culture and our brand image. In this session we'll discuss how we navigated through our own innovator's dilemma, and share takeaways from our experience that you can apply to your own organization.
When building large, cloud-based applications that operate at a high scale, it’s important to maintain a high availability and resilience to failures. In order to do that, you must be tolerant of failures, even in light of failures in other areas of your application. “Fly two mistakes high” is an old adage in the radio control airplane hobby. It means, fly high enough so that if you make a mistake, you can continue flying with room to still make mistakes. In his session at 18th Cloud Expo, Lee A...