The General Data Protection Regulation (GDPR) puts an emphasis on transparency, security and accountability within an organization, and each of those areas affects security in different ways – from action and prevention, to mitigation, governance, awareness and more.
In this latest installment video about our journey to GDPR compliance, IT Security Director William Dalton explains how the GDPR is changing some of the ways Trend Micro deals with security, from taking a global perspective on the way we manage data privacy, to changing the way we communicate around breaches.
One key challenge under GDPR is the 72-hour breach notification rule, highlighting the importance of clear communication around breaches. To help address this rule, we have new procedures and protocols in place that will enable us to not only understand if a breach has occurred, but also quickly and accurately remediate and report on it.
Another area that is important to pay attention to is the requirement to use state-of-the-art security. As a part of complying with this, we use multiple technologies, including many of our own Trend Micro security products, to protect customer data and help with compliance. With security and privacy requirements at the perimeter of the network, within the data center, and at the endpoint, leveraging the connected nature of Trend Micro’s security offerings makes it much simpler for us to report a breach, as it’s easier for us to see what has happened and to collect information, regardless of where it happened.
Watch the video to learn more from our IT Security Director on how the GDPR affects security in different ways, the importance of having a global perspective to managing data, and the need for state-of-the-art security.
3/14 – Overview and Finance/Executive Sponsor: Learn what the GDPR is all about, and understand how executive sponsorship will help your organization and employees become prepared.
3/21 – GDPR Program Manager: See who is mapping our Journey to GDPR compliance, and find out what type of person is needed to coordinate all of the functions involved.
3/28 – Legal: The GDPR is fundamentally a legal obligation. Understand how large the role of legal is in scope, both internally and externally, and how it is involved across all aspects of the organization.
4/4 – IT Security: Hear what our IT director has to say about how the GDPR is affecting our organization, from taking a global perspective to the way we manage data privacy, to changing the way we communicate.
4/11 – Sales & Marketing: Our COO, Kevin Simzer, explains how we’re on the same journey to becoming GDPR compliant as our customers are, and what the benefits are in this process.
4/18 – HR: See how the GDPR affects our employees, and what we’ll do to ensure they have a good understanding of the regulation.
4/25 – Marketing Operations: Learn how our Marketing Operations team ensures that our customer data is protected across all external platforms.
5/2 – Products and Services: Hear from Bill McGee, SVP Cloud Security, on how we’re always evolving to deliver state-of-the-art capabilities in our products, and how we help our customers deliver their portion of the shared security responsibility of cloud environments.
5/9 – Sales and Channel Enablement: See how important it is that our existing partners understand GDPR, and how we help them find the tools needed to achieve GDPR compliance.