Hi [[ session.user.profile.firstName ]]
Sort by:
    • IT Security & Privacy Governance in the Cloud
      IT Security & Privacy Governance in the Cloud Moderated by Rebecca Herold, The Privacy Professor; Jacqueline Cooney, BAH, Daniel Catteddu, CSA, Chris Griffith from HPE Recorded: Oct 18 2016 5:00 pm UTC 61 mins
    • After multiple newsworthy data breaches in recent times, IT security and privacy governance has gained importance across the globe. Most organizations have established security and compliance policies and procedures to protect their intellectual property and corporate assets, especially in the IT space. As companies transition their applications and data to the cloud, it is critical for them to maintain, or preferably surpass, the level of security they had in their traditional IT environment. Leaders are also responsible for defining policies to address privacy concerns and raise awareness of data protection within their organization, and for ensuring that their cloud providers adhere to the defined privacy policies. Failure to ensure IT Security when using cloud services could ultimately result in higher costs and potential loss of business, thus eliminating any of the potential benefits of the cloud.

      While security and privacy are related, they are also distinct. IT security is primarily concerned with defending against attacks, not all of which are aimed at stealing data, while privacy is specifically related to personal data held by an organization, which may be endangered by negligence or software bugs, not necessarily by malevolent persons. On this webinar our panel of experts will address some of the key distinctions, and discuss some best practices for managing IT security and implementing privacy governance for the cloud.

      Read more >
    • Cross-Border Data Transfers in the Real World – Privacy Shield, Now What?
      Cross-Border Data Transfers in the Real World – Privacy Shield, Now What? Tanya Forsheit, Partner & Co-Chair Privacy & Data Security Group, Frankfurt Kurnit Klein & Selz, PC Recorded: Oct 14 2016 3:00 pm UTC 45 mins
    • Personal data of individuals – consumers and employees – is in constant motion across international borders. Nonetheless, existing privacy laws purport to prohibit organizations in many countries from transferring data to another jurisdiction in the absence of adherence to various legal frameworks or contractual mechanisms designed to enhance the protection of personal data.

      Those legal frameworks suffered a blow last year when the European Court of Justice struck down the 15 year old Safe Harbor Framework. A year later, the EU-US Privacy Shield Framework has been approved as a replacement, and many companies have begun to certify, but the new Framework remains subject to potential legal challenge. Other European data transfer mechanisms – standard contractual clauses and Binding Corporate Rules – are also subject to legal challenge. And other jurisdictions around the globe in South America, Asia and elsewhere, are imposing restrictions on the transfer or personal data and in some cases even calling for data localization. Yet, data continues to flow in real-time.

      What does it mean in the real world? What are the real risks for multinational data owners and for service providers that process data of such data controllers? This presentation will distinguish fact from fiction and provide practical tools for companies that are struggling (understandably) to wrap their virtual arms around the world.

      Read more >
    • Challenges in Achieving Global Privacy: Latest Compliance Changes
      Challenges in Achieving Global Privacy: Latest Compliance Changes Jan-Boris Wojtan, EALA Data Privacy Lead, Accenture Recorded: Apr 8 2010 8:00 am UTC 48 mins
    • This session will look at some of the recent changes in the regulatory landscape as well as what we can anticipate in the near future. We will try to discern any trends in these developments and discuss how a global company could respond.

      Boris joined Accenture in April 2007 and is Responsible for data privacy compliance in the EALA (Europe Africa and Latin America) region. His duties include helping to establish and maintain a progressive Client Data Protection Programme, advising on client and vendor contracts, carrying out privacy impact assessments on new client offerings or new internal systems, managing a network of DPOs, liaising with regulators, promoting Accenture’s BCR application, anticipating regulatory changes and making sure the business stays compliant.

      Before moving to Accenture, Boris spent three years at the UK regulator, the Information Commissioner, looking at the world through the eyes of the game keeper, where he advised on data privacy and freedom of information case work and liaised with other European regulators to kick start an unprecedented approvals process known as ‘Binding Corporate Rules’.

      His other experience includes six years in private practice as a commercial lawyer specialising in Data Privacy matters and three years in Brussels including spells as press officer of a parliamentary group, an assistant to an MEP, a paralegal at Lovell White Durrant and a stagiaire at the Internal Market Directorate General of the European Commission.

      Read more >
    • Symantec and Deloitte discuss “Trust” and Data Privacy in Australia
      Symantec and Deloitte discuss “Trust” and Data Privacy in Australia Brian Fletcher, Director, Government Affairs, Symantec; Marta Ganko, National Privacy and Data Lead, Risk Advisory, Deloitte Recorded: Aug 17 2017 1:00 am UTC 60 mins
    • With the advent of Big Data comes not only new ways to optimise business and marketing processes, but also new concerns over the control and privacy of personal data.

      These have given rise to local and regional data protection laws and regulations such as the General Data Protection Regulation (GDPR), a modernisation of data protection laws in the European Union, and the Australian data breach notification law, an amendment to the Privacy Act 1988 (Cth) which introduces a mandatory scheme for eligible organisations and federal agencies to report data breaches.

      Data breach notifications give individuals greater control over their personal data and promote transparency over information handling practices, fostering consumer trust in businesses. The law requires businesses to prepare and assess risks to maintain brand confidence even if an incident becomes the next data breach headline.

      Join this webinar to learn about:

      - New challenges introduced by the Australian mandatory data breach notification law
      - Key steps in the journey towards data privacy compliance
      - How to monitor insider threats
      - How to leverage these regulations to gain trust and ensure great customer experiences

      We look forward to your participation in this free webinar.

      Read more >
    • GDPR - Security at the Service of Privacy
      GDPR - Security at the Service of Privacy Michelle Dennedy (Cisco) | Ariel Silverstone (Data Protectors) | Paul Rosenzweig (Red Branch Consulting) Recorded: Feb 20 2018 10:00 pm UTC 62 mins
    • The General Data Protection Regulation (GDPR), a key legislation covering privacy rights, data security, data control, and governance, is going into effect in May 2018. As organizations are scrambling to achieve GDPR compliance before the May 25th deadline, some are still not clear on the exact GDPR requirements.

      Join this panel of experts as they discuss:
      - The regulatory landscape in 2018
      - What GDPR means for you and your organization
      - GDPR requirements around data collection and governance, exposure and breach disclosure, identity and privacy
      - Evaluating your cyber risk
      - Last minute changes your organization needs to make
      - Failure to comply & fines
      - Recommendations for achieving compliance and other regulation on the horizon.

      Speakers:
      - Michelle Dennedy, VP & Chief Privacy Officer at Cisco
      - Ariel Silverstone, Managing Partner, Data Protectors
      - Paul Rosenzweig, Principal at Red Branch Consulting

      Read more >
    • How GDPR Affects US Companies
      How GDPR Affects US Companies Bob Siegel, President and Founder of Privacy Ref Recorded: Aug 17 2017 6:00 pm UTC 37 mins
    • Learn how the EU General Data Protection Regulations affect US based companies.

      Join CyberDefenses and Privacy Ref's Bob Siegel to review how the GDPR directly impacts US based corporations. These far-reaching regulations impact any company that stores or transmits identifying information of any individual within the EU.

      In this webinar, you will be introduced to the basic elements of the GDPR and you will discuss the requirements that require action for US focused companies.

      About Bob Siegel:
      President and founder of Privacy Ref, Inc., Bob Siegel, started the company in 2012. After his time as Senior Manager of Worldwide Privacy and Compliance at Staples, Inc., Bob applied his experience and expertise to assisting companies implement and maintain strong privacy programs. Bob has worked with many different organizations, dealing with programs of all sizes and regulatory needs.

      Always seeking to improve his own understanding of all things privacy, Bob has earned certifications from the International Association of Privacy Professionals. These include certifications in US private and public sector, European, and Canadian privacy laws. Bob has also earned certifications in Information Technology Privacy and Privacy Program Management. Bob Siegel has also been recognized as a Fellow of Information Privacy by the IAPP for his outstanding dedication to the privacy community. He has also served on the IAPP's Certification Advisory Board for the CIPM program and the IAPP's Publication Advisory Board. Bob also serves on the IAPP’s teaching faculty leading classes in the areas in which he is certified.

      About CyberDefenses:
      CyberDefenses is a premiere cyber security services organization, providing advanced security services to the commercial and federal sectors. CyberDefenses Academy provides advanced training the IT, security and privacy professionals that wish to be at the top of their field.

      Read more >
    • Lessons from Equifax: Open Source Security & Data Privacy Compliance
      Lessons from Equifax: Open Source Security & Data Privacy Compliance Bob Canaway, CMO, Black Duck; Mike Pittenger, VP Security Strategy, Black Duck Recorded: Nov 16 2017 4:00 pm UTC 46 mins
    • The Equifax breach provided a unique look into “how” many breaches occur. In Equifax’s case, hackers exploited an unpatched Apache Struts component, resulting in the exposure of over 140 million consumer records. The exploit of this vulnerability highlights the need for visibility to open source in custom applications and just how ineffective traditional security solutions are when it comes to open source vulnerabilities.
       
      Further, while class action lawsuits have already begun, Equifax faces other regulatory challenges as well. The US Federal Trade Commission started investigations into the company’s security policies and controls that will likely result in financial penalties. Since the exposed data included non-US citizens, foreign data protection and data privacy regulations also come into play.
       
      Join Mike Pittenger and Bob Canaway as they discuss how organizations can more effectively manage open source, the strengths and weaknesses of testing methodologies in identifying vulnerable open source components, and how data privacy standards such as PCI, Section 5 of the FTC Act, and GDPR necessitate a change in how organizations address vulnerabilities in their code.

      Read more >
    • Road to GDPR: Critical Data Privacy Compliance
      Road to GDPR: Critical Data Privacy Compliance Ilanko Subramaniam, Director - Risk, Compliance and Data Protection, Templar Shield; Shane Westrup, Manager, LockPath Recorded: Nov 9 2017 5:00 pm UTC 57 mins
    • GDPR compliance designed to protect personal information of EU citizens will be a complex and time-consuming undertaking for most organizations. The challenge is interpreting the regulation and incorporating the appropriate processes and technologies to protect personal data of EU employees. The discussions will start with establishing a Privacy program to support data strategy and drive a compliance roadmap. In this webinar, Templar Shield’s Ilanko Subramaniam and LockPath’s Shane Westrup will discuss the basic tenets of the General Data Protection Regulation, building out a data privacy and security program, and utilizing tools to help your organization establish the necessary framework to comply with this regulation.

      -----------------------------------------------------------------------------

      Disclaimer/No Attorney-Client Relationship/No Legal Advice
      The information presented is not legal advice or a legal opinion, and it may not necessarily reflect the most current legal developments. You should seek the advice of legal counsel of your choice before acting upon any of the information presented

      Read more >
    • CPE Webinar: GDPR Compliance MasterClass
      CPE Webinar: GDPR Compliance MasterClass Rebecca Herold, the Privacy Professor, AlienVault, Absolute Software, OneTrust, and BitSight Upcoming: Apr 24 2018 5:00 pm UTC 75 mins
    • The GDPR is the most significant change in data privacy regulation in more than 20 years. It comes into force on 25 May 2018 and will impact all businesses that process personal data or businesses that process personal data of EU citizens even if they are not in the EU. Obligations for compliance will affect both controller and processors and regulators will get increased enforcement powers and the right to impose fines of up to 4% of global turnover for both data breaches and infringements of the law.

      Attend this CPE accredited educational webinar with our panel of experts to learn what you need to know about the GDPR and how to remain compliant.

      Learning Objectives:

      - Learn how to prepare for GDPR implementation
      - Identify the real life challenges of compliance
      - Learn about prioritizing plans and actions to effectively prepare for data protection
      - Discover some of the benefits, approaches, and tools to comply with the GDPR

      Read more >