The Endpoint Imperative: Global Security Compliance. Are you ready?

Second Government Cloud Computing Survey

By G C Network | April 1, 2009

Earlier this week I had the pleasure of presenting at the Sys-con International Cloud Computing Expo in New York City. My presentation, The View from Government Cloud Computing Customers, reviewed…

Navy NGEN and Cloud Computing

By G C Network | April 1, 2009

I spent half of today in downtown DC at the Navy Next Generation Enterprise Network (NGEN) Industry Day.  In case you’re not familiar with NGEN, this project will be the follow-on…

An Ontology for Tactical Cloud Computing

By G C Network | March 25, 2009

This week I’ve had the pleasure of presenting at two fairly unique conferences. On Tuesday I was in San Diego at the Simulation Interoperability Standards Organization (SISO) Workshop. SISO is…

Federal Cloud Computing Roadmap

By G C Network | March 24, 2009

ServerVault, a long time provider of IT hosting services to the Federal government, has been discussing cloud computing quite a bit with their current (and future) customers.  The repetitive nature…

Booz Allen Hamilton Lays Out Path To Cloud

By G C Network | March 23, 2009

Now that cloud computing is seen as a viable technology for the government marketplace, management consulting leader Booz Allen Hamilton is now providing cloud transition guidance. In his article “Cloud…

Is Sun Rising or Setting?

By G C Network | March 19, 2009

Today was strange. First Sun announces it’s open cloud computing platform. Sun Unveils Open Cloud Computing Platform “Sun on Wednesday announced plans to offer its own Open Cloud Platform, starting…

A Conversation with Emil Sayegh, Mosso General Manager

By G C Network | March 16, 2009

Last week, Mosso announced their new “Cloud Server” and “Cloud Sites” offerings. They also exited “Cloud Files” from beta, positioning themselves as a challenger to Amazon. With this as a…

Playing the Cloud Computing Wargame

By G C Network | March 12, 2009

Today at FOSE I tried my hand at balancing traditional IT, hybrid cloud offerings and commercial cloud offerings on a craps table. Just to set the scene, the Booz Allen…

Vivek Kundra Nominated for Federal CIO

By G C Network | March 10, 2009

Mr. Kundra’s quote from the Wall Street Journal says it all: “I’m a big believer in disruptive technology. If I went to the coffee shop, I would have more computing…

7th SOA for E-Government Conference

By G C Network | March 5, 2009

On April 28, 2009, Mitre will be holding its biannual SOA for E-Government Conference. This conference is one of the region’s premier opportunity for federal managers and MITRE Subject Matter…

 

 

China has its Cybersecurity Law. Next May, the General Data Protection Regulation – or GDPR –goes into effect for the European Union. Research shows most organizations just aren’t ready for these and other measures.

Tune into this episode of “The End Point Imperative: A Podcast Series from Intel,” to hear from Intel’s Yasser Rasheed, Director of Business Client Security on how a combination of protection at the hardware and software level can help organizations gain compliance and avoid breaches, fines, and financial impact.

Kevin L. Jackson: Hi everyone and welcome to this episode of the Endpoint Imperative. A podcast series from Intel. My name is Kevin L. Jackson and I’ll be your host for this series. The topic for this episode is “Global Security Compliance. Are you ready? With me is YasserRasheed, director of Business Client Security with Intel. Yasser, welcome.
 
Yasser Rasheed: Thank you for hosting me today. I’m very excited for this talk.
 
Kevin L. Jackson: It’s really our pleasure. Let’s get started on this. The security world is really abuzz. We talk about GDPR or the General Data ProtectionRegulation. This is Europe’s looming security regulation. Can you tell us a little more about it?
 
Yasser Rasheed:Absolutely. You know Kevin, the industry is shifting and evolving very quickly in this space. We’re excited about the positive changes taking place in the industry. The GDPR or General Data Protection Regulation coming out of Europe is really a replacement for the European directive that they had in the past. It covers a whole slew of data protection and security regulations that allows – but really caters to protecting the end user and the end user data.
 
Kevin L. Jackson: I understand it’s really the hefty fines that have the information security officers worried. I’m told that they can be the greater of either 20 million Euro or 4% of global annual revenues. Why is this putting the spotlight on security and compliance in North America? I thought this is a European thing, right?
 
Yasser Rasheed:It is not a European thing only. It affects anyone that deals with the European citizens or in business in Europe so global companies are really impacted by this regulation and they need to pay attention to it.
 

 
                     (When viewed on a mobile device, please press select “Listen in browser”)


Kevin L. Jackson: This is really important to you. From your point of view, at the IT and operations level, what should these companies be really focused on?

 
Yasser Rasheed:The companies need to first get educated on the new regulations. It is going to be applicable in May or enforced starting May 2018. It is really coming very soon. The GDPR regulation is really a legal framework that comprehends a number of data security and privacy guidelines for organizations. For example, they need to make sure that they look at how the data is processed, how the data is protected. Who gets access to the data at what point in time and under what tools? Is everything audited and logged in the right way so that they can have the right traceability. There are a number of things that the organizations and especially IT and chief information security officer teams need to pay attention to in this case.
 
Kevin L. Jackson: With all that in mind, what should these enterprises be thinking about when it comes to data protection at the hardware and the software level?
 
Yasser Rasheed:That’s a great question. First, let’s head back and look at what’s happening in the industry nowadays. The whole space of cybersecurity is full with hackers and really malicious users trying to get access to information and this is impacting everyone. We see breaches every day. Solutions today are available in software, however, we believe that the software alone cannot protect and cannot enforce the level of readiness for GDPR and the likes. What we really look for is the role of the hardware to augment and compliment the role of the software in the space. More specifically in the security space, there are many hardware products that companies like Intel is offering in this space to protect the identity of the user, to protect the data of the user. These are tools that our key organizations can take advantage of to be ready for GDPR compliance and in general, to have a more healthy and stronger security posture in the environment.

Kevin L. Jackson: Thank you very much for sharing that important point. Unfortunately, though, we’re at the end of our count for this episode. Many thanks to Yasser Rasheed with Intel for his insights and expertise.

 

 

( This content is being syndicated through multiple channels. The opinions expressed are solely those of the author and do not represent the views of GovCloud Network, GovCloud Network Partners or any other corporation or organization.)

 

Cloud Musings

( Thank you. If you enjoyed this article, get free updates by email or RSS – © Copyright Kevin L. Jackson 2017)

Follow me at https://Twitter.com/Kevin_Jackson
Posted in

G C Network