Culture / What is needed for GDPR compliance?
What is needed for GDPR compliance?
10 August 2017
What steps should an organisation take to comply with GDPR? Cyber security journalist Edward Lucas explains.
According to Edward Lucas from The Economist, the Data Protection Officer (DPO), reporting to the CISO, the General Counsel, or the Chief Risk Officer, will be a key part of any cyber security strategy under the GDPR. DPOs need to have the authority to make changes to cyber security processes and to invest in cyber defences. The advent of GDPR adds urgency and organisations need to assess the data they have, the processes they have in place to prevent cyber security breaches, and the processes for monitoring and detecting a cyber incident should one happen.
At The European Information Security Summit in London, expert speakers addressed 400 information security industry leaders as part of discussions on how to build an agile cyber security culture.
Would you like to build a robust incident response plan? Join our R3: Resilience, Response & Recovery conference, on September 26 in London.
R³: Resilience, Response & Recovery 2017 is the #1 conference focusing on post breach response plans, including forensic and legal requirements, communication strategies and top tips for a fast recovery.