Security professionals wake every day to more and increasingly savvy data perpetrators who’ve found new and uncharted means to acquiring data. Shared Assessments’ Tom Garrubba explains why anticipatory compliance is a key way to address this issue.
As sure as the sun rises in the east and sets in the west, organizations will continue to battle both new and long-standing cyber threats. Attempts to penetrate and disrupt the environment consist of phishing (including “whale-phishing” targeting executives), vishing (i.e., voice phishing) or other means – such as clickbait – to trick users into unknowingly installing malware and ransomware. And most cyber professionals will confirm that they always seem to be in reactionary mode rather than being proactive.
Too many organizations are faced with monetary losses, reputational damage and other impacts from these threats. And many more find themselves unprepared to meet the compliance requirements of legislation such as the California Consumer Privacy Act (CCPA). The law, formally known as California Senate Bill 327, mandates that all connected devices sold in the state include “a reasonable security feature or features” that protect consumers and their data from unauthorized access, modification or disclosure. The CCPA takes effect January 1, 2020.
