Derrick Coston, CISSP, CISA, GIAC

This is a common result for every organization that has a data breach.  The Equifax Breach  is just one of many that have the similar root cause.  What is interesting is that  many organizations do not use the findings of the Equifax Breach to enhance their own Risk Management and Cyber Security Controls.  SC media reports today data breaches up 400% and the Identify Theft and Research has just published their January 2019 Data Breach List which is more disturbing because many organizations do not even know the extent of how much PII or PHI data was compromised.  We seem to be going backwards and not forwards and it appears that the problem will get worse before it gets better.    At the RSA 2019 conference, Jason Escaravage, from Booz Allen Hamilton, summed up one of the issues nicely… “compliance isn’t enough. You need to be aware of the threats that are likely to… that your organization is likely to encounter or experience and really getting a threat-focused mindset into the organization”. Entire Article Here.  This is just a starting point.  We have a long way to go.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s