CYBERSECURITY
“ Often security , compliance , and operations teams are not aligned , and each is working toward entirely different objectives ”
MATTHEW DAVIES VP OF PRODUCT , SURECLOUD
SureCloud ’ s Davies says : “ Continuous compliance allows you to free up people ’ s time to focus on the core issues rather than repetitive admin tasks .
“ It will be as much a cultural change as it is a process-driven one . Often security , compliance , and operations teams are not aligned , and each is working toward entirely different objectives . Organisations need to unite these teams around a common set of objectives . Then standardised and aligned processes will simplify testing and evidence collections , and technology will allow you to automate processes using workflow , emails , and notifications . It can also allow you to fully automate the collection and analysis of data to provide constant assurance of controls operating effectively . Not only will this proactive approach make compliance easier to manage , it will also improve security across your IT environment .”
Future compliance For many businesses the topic of compliance is a complicated one . While the benefits of regulations are clear to see , the pitfalls in understanding them and adhering to them are great . Simon Mullis , Chief Technology Officer at Venari Security says : “ Regulations , like GDPR , have had an amazing impact on data safety . The risk of substantial fines has driven a massive uptake in end-to-end encryption worldwide , ensuring compliance and supporting data privacy in transit and at rest .”
As the regulatory landscape continues to grow and change , businesses that want to stay ahead of the game and meet their compliance obligations will need to ensure they are on top of the regulations . This not only requires strong policies and procedures , but also strong communication and relevant training among staff members to ensure that everyone is on the same page .
cybermagazine . com 47