/, Information Technology, ISMS, ISO 20000, ISO 27001/Data Breaches and Solutions

Data Breaches and Solutions

Data Breaches  

A List of Data Breaches are displayed at Wikipedia, some of which in 2018 are as below.

EntityRecordsOrganization typeMethod
Centers for Medicare & Medicaid Services75,000healthcarehacked
Facebook50,000,000social networkpoor security
Ticketfly (subsidiary of Eventbrite)26,151,608ticket distributionhacked
AerServ (subsidiary of InMobi)75,000advertisinghacked
MyHeritage92,283,889genealogyunknown
Google Plus500,000social networkpoor security

.

Besides these, you may have heard about the recent data breach incidents at Cathay Pacific with a reported number of up to 9.4 million associated passengers and Starwood with a reported number of around 500 million involved customers. No organization is absolutely risk-free from data breach, which is of critical damages to corporate image and brand value. With the rapidly increasing uses of subcontracted data processing, data centers, and cloud services, such risks are significantly growing in the meantime.

GDPR

With the implementation of General Data Protection Regulation (GDPR), EU’s enhanced regulation for data protection, from 25 May 2018, an organization of data breach may suffer from a large amount of penalty due to absence of due diligence in data protection.

Supports by DQS

The information security risks can only well addressed with a systematic approach in an organization. Considering the increasing needs from varying industries, DQS has enhanced our professional services to help organizations to mitigate the risks from potential data breaches.

To organizations

DQS is providing:
a) ISO 27001:2013 certification to all kinds of organizations, or parts of organizations, with sensitive information,
b) ISO 20000-1:2018 certification to organizations with IT service, and
c) non-certification audits against above standards.

To employees

To improve the personal skills, DQS Academy is providing:
a) IT Security Professional courses certified by EC Council, such as Certified Ethical Hacker and Computer Hacking Forensic Investigator, to persons in cyber security field, and
b) information security management courses certified by PECB, such as ISO 27001 Lead Auditor, Penetration Test Professional, and Data Protection Officer, to persons in information security management field, and
c) internal auditor lecturing courses by DQS HK for standards like ISO 27001, to ISMS responsible persons.

Never be too late to prepare for business sustainability.

By |2018-12-05T10:28:06+00:00December 4th, 2018|GDPR, Information Technology, ISMS, ISO 20000, ISO 27001|Comments Off on Data Breaches and Solutions

About the Author:

error: Alert: Content protected !!