Wednesday, September 21, 2011

Senator to businesses: Protect data or pay

Senator Richard Blumenthal says his data breach legislation will deter data breaches. IT security experts have their doubts

Senator Richard Blumenthal, D-Conn., says his newly introduced legislation, the Personal Data Protection and Breach Accountability Act of 2011 will protect individuals' personally identifiable information from data theft and penalize firms that don't adequately secure their customers' information. Naturally, there are skeptics.

The bill would establish "appropriate minimum security plans" for businesses with 10,000 or more customers to safeguard their customer information and hold those businesses accountable through fines should they fail to meet those standards. The bill also calls for more public/private information sharing.

Click here or the headline above for the full article.

Certainly "larger" companies should already have and maintain a Written Information Security Plan (WISP).  They should already be allocating budget dollars to their security plan.  But what about all of the other companies that operate with information that should be kept private? 

Best practice in the industry suggest that all companies should be addressing their particular risk assessment.  For some smaller companies it is a simple process.  As the company size grows, so do the complexities of risk management.

Dolvin Consulting works with industry experts Cyber Security Auditors and Adminstrators (CSA2) to help companies of all sizes calculate their risk exposure and take the appropriate steps to safe guard their client and employee relationships. 

Think of this as a fire drill for a data breach.  You hope you never need it, but you will be prepared for the worse.  Contact Dolvin today to see how we can help you get a decent nights sleep.

No comments:

Post a Comment