As we mark 28 January, Europe's 13th annual Data Protection Day, we have to recognize that protecting data has become increasingly difficult. Between a lack of awareness, unintended user actions, system glitches, and increasingly sophisticated cyber adversaries, preventing data loss is no mean feat.
With increasing risks and expanding regulations for data protection, organisations must focus on closing security gaps that have emerged in the era of cloud and mobility. Indeed, as applications move to the cloud, users are accessing them directly everywhere they connect, which creates blind spots as users bypass security controls while off-network.
In the era of GDPR, the stakes have never been higher for those that fail to ringfence their organisation’s most sensitive assets. Indeed, towards the end of last year, we saw incidents on an unprecedented scale, involving major hotel chains and multiple airlines. More recently, Google has been fined £44m for a breach of the EU’s data protection rules. Those organisations that are fully GDPR-compliant are still a minority almost a year since the regulation took effect, despite the fact that data privacy regulators have sharper teeth than ever before.
With hacks becoming more sophisticated, and companies failing to adequately protect their customers’ data, the core values of Data Protection Day are becoming more important than ever. While the date provides a good reminder for us all of the currency of data today and the serious consequences of failing to secure it, it is vital for organisations to implement processes that are appropriate for today’s increasingly digital corporate network—to make every day data protection day.
For instance, minimising the risks of users bypassing security controls when connecting direct-to-cloud, and by eliminating blind spots by inspecting all SSL traffic, which typically conceals sensitive data. Ultimately, without visibility and control, organisations are at an increased risk of data loss, either due to unintentional or malicious reasons.
Zscaler addresses data loss risk with its data protection offering that is part of its fully integrated security platform. To learn how you can protect all users, regardless of location, by inspecting SSL traffic inline and applying advanced techniques like Exact Data Match that scale globally, download this eBook.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Rainer Rehm is EMEA Data Protection Officer, Zscaler