Data security remains a hot topic. I have written in the past about obligations relating to Data Breach Notification under Alabama law. See Back to Basics, Continued—Data Breach Notification and Back to Basics, Continued — Data Breach Notification, Again. Data Security though is a topic that just doesn’t rest.
The reality is that in our electronic world, when systems are compromised or breached, the potential for damage is enormous. So, it is exceedingly incumbent on us to be very sensitive to data security and provide a heightened degree of protection.
The basic protection for securing data starts at home—within our own companies with our own employees. After all, our employees are the shields that provide for the first line of defense against phishing, spear phishing, targeted attacks, insider threats and physical security breaches. By use of strong defenses—including, strong passwords, passphrases, multi-factor identification, physical security and encryption—we lessen the chances of data security breaches.
Systems protection provided through our software can be very valuable. There are extraordinary anti-virus alert systems and firewalls available. But, having our CSRs knowledgeable and always thinking about potential hacks is the key to success. That is, all of the anti-virus systems that we run on our computers are worthless if we are oblivious to security.
Security protection starts with complying with your company’s internal policies and procedures surrounding data protection. Some of the internal policies may include:
Cyber security training is just one more module that a company needs to add to responsible employee conduct.
Please Note: This is the two hundred-twenty-eighth blog in a series of Back to Basics blogs, in which relevant and resourceful information can be easily accessed by clicking Dentons - Consumer Finance Report.