Compliance & Risk Management

One of the security obstacles we named as top priority for 2015 was the upcoming EU General Data Protection Regulation, slated to come into force in 2017. Although some time away, the extensive requirements require planning in order to ensure compliance come 2017; in a recent webinar, we addressed how you can prepare now for the compliance landscape of tomorrow. While we still advocate for current action to prepare...

Earlier this year, we talked about the distinction between a security incident and a data breach and that one does not have to trigger the other. Data from the OCR indicates that 60% of the large data breaches could have been prevented by encrypting laptops and mobile devices, at the very least. In other words, the theft or loss of these devices need not have led to the breach of...

It’s been a busy decade for data privacy. I recently wrote an article for Finextra that de-mystifies the regulation roadblocks of data privacy. Worldwide more than 575 million data records were lost or stolen in 2013, so it comes as no surprise that regulations have sprung up to combat data loss, but there’s little understanding out there of what’s in place, what the rules are for non-compliance and what...

According to the 2014 IT Priorities Survey released by Tech Target, GRC programs are on the rise this year. The survey reported that 82% of organizations will already have, or are planning to implement, a formal governance, risk and compliance (GRC) program in 2014. The growth in proactive GRC programs has been driven by increased regulations, expanded IT security threats and a rapidly growing data footprint, notes Derek Gascon,...

We recently released a new video in our Ask Absolute series answering the question, What is IT GRC?  Governance, risk management, and compliance (GRC) is an umbrella term to describe an organization’s approach to these closely-related areas, reflecting how an integrated approach to all three can benefit an organization. GRC for the endpoint is the tools and data designed to ensure proper governance, risk management and compliance. Absolute Computrace provides...