In this episode of the SOCK(net) podcast, Yadin and Tony, along with guest host Mengchao Wu, discuss how to take the first steps in understanding what data security compliance means, how to get a crash course on the most important regulations that require action now and who to start talking to in your own company. Dave Packer, VP of Product Marketing at Druva joins the show and brings his wealth of experience as well as some best practices for approaching regulatory compliance frameworks like PCI and HIPAA.
Although regulatory compliance has been driving the rise in security spending, there remains a significant gap in understanding how these regulations affect all members of a technology team within an organization. The rate at which regulation is being passed continues to put more pressure on companies to have a solid solution. Even small and mid-sized businesses, which can now harness the national and global reach of the internet, must ensure that they are properly handling the sensitive information of their clients and employees in accordance with the applicable laws. For instance a business with around 100 employees with a footprint that crosses a few states and customers in more that two countries could be beholden to more than twenty different privacy laws.
Implementing and maintaining compliance policies and the technologies that support various governance laws can be costly, time consuming and complicated. It’s critical for companies to clearly understand which laws they must comply with. As complexity rises the need for automating processes like capturing, analyzing and managing changes to IT systems along with the flow and storage of massive amounts of sensitive data increases as well.
Among the questions we address are:
Want to engage? Reach out to us on Twitter and via email at email@example.com.
Guest Host: Mengchao Wu
Guest: Dave Packer
Music by: www.bensound.com