Click here to close now.


News Feed Item

New ISACA Data Privacy Task Force to Help Businesses Manage Growing Online Issues

ISACA, a nonprofit association, marked Data Privacy Day with the announcement of a global task force on data privacy that will address the needs of businesses and government organizations worldwide. The Privacy Advisory Task Force will drive research, guidance and advocacy, and will help IT security, risk, governance and assurance professionals use the COBIT framework to manage the rapidly growing issues related to the use of information online.

Compromised data can be costly, averaging $5.5 million per organization, according to the seventh annual Ponemon Cost of a Data Breach report. Enterprises also face rising regulatory pressures. In the US, potential changes include the proposed APPS Act, which would obligate mobile application developers to be more transparent about the use of personal data; the Federal Trade Commission’s adoption of amendments to the Children’s Online Privacy Protection Rule (COPPA); and the long-awaited final omnibus rule on HIPAA from Health & Human Services, which expands liability for businesses (and their subcontractors). Organizations conducting business in Europe face the proposed EU General Data Protection Regulation, a sweeping plan to standardize privacy requirements across all EU countries.

ISACA analysis shows that these challenges are amplified for multinational companies by the absence of global standards and the rise of mobile devices and cloud computing, which make it easy for data to travel across borders. Yet ISACA’s 2012 IT Risk/Reward Barometer revealed that only 16 percent of organizations forbid cross-border travel with company data on mobile devices.

“The current debate about data privacy is just the tip of the iceberg. As technologies like Big Data and mobile devices keep making it easier to offer better customer service and online access, enterprises will experience growing pressure to collect and share private information,” said Jeff Spivey, CRISC, CPP, PSP, international vice president, ISACA, and vice president, RiskIQ. “Companies want guidance on how to strike the right balance between profiting from data and protecting data.”

As a Data Privacy Day Champion, ISACA recognizes that organizations have a responsibility to secure their part of cyber space and the networks they use. ISACA’s Privacy Advisory Task Force will focus on defining and prioritizing the knowledge needs and services valued by those who manage or support privacy initiatives. ISACA members include chief privacy officers (CPOs) and chief information security officers (CISOs) from a range of Fortune 500 companies. Task force participants represent all regions worldwide and will be announced in February 2013.

“NCSA is pleased ISACA is supporting Data Privacy Day and providing a larger year-round strategy and offerings to help businesses and government organizations manage data privacy issues from an IT risk perspective. Respecting privacy and safeguarding data are responsibilities we all share,” said Michael Kaiser, executive director, National Cyber Security Alliance.

ISACA’s privacy guidance includes:


With 100,000 constituents worldwide, ISACA ( is a nonprofit association providing knowledge, certifications and education on information systems assurance and security, enterprise governance and management of IT, and IT-related risk and compliance. ISACA offers the CISA, CISM, CGEIT and CRISC certifications and developed COBIT.

ISACA Knowledge Center:–center

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
Interested in leveraging automation technologies and a cloud architecture to make developers more productive? Learn how PaaS can benefit your organization to help you streamline your application development, allow you to use existing infrastructure and improve operational efficiencies. Begin charting your path to PaaS with OpenShift Enterprise.
Recently announced Azure Data Lake addresses the big data 3V challenges; volume, velocity and variety. It is one more storage feature in addition to blobs and SQL Azure database. Azure Data Lake (should have been Azure Data Ocean IMHO) is really omnipotent. Just look at the key capabilities of Azure Data Lake:
Decisions about budgets and resources are often made without IT even having a seat at the table. As technologist we understand the value of DevOps - but do your business counterparts? If they don't, your DevOps initiatives could lose funding before they start. In her session at DevOps Summit, Jeanne Morain, Strategist / Author at iSpeak Cloud, LLC, will provide insights on how to bridge the gap between business and technology leaders. Attendees will learn prescriptive guidance on balancing wor...
SYS-CON Events announced today that Luxoft Holding, Inc., a leading provider of software development services and innovative IT solutions, has been named “Bronze Sponsor” of SYS-CON's @ThingsExpo, which will take place on November 3–5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. Luxoft’s software development services consist of core and mission-critical custom software development and support, product engineering and testing, and technology consulting.
Developing software for the Internet of Things (IoT) comes with its own set of challenges. Security, privacy, and unified standards are a few key issues. In addition, each IoT product is comprised of at least three separate application components: the software embedded in the device, the backend big-data service, and the mobile application for the end user's controls. Each component is developed by a different team, using different technologies and practices, and deployed to a different stack/...
Data loss happens, even in the cloud. In fact, if your company has adopted a cloud application in the past three years, data loss has probably happened, whether you know it or not. In his session at 17th Cloud Expo, Bryan Forrester, Senior Vice President of Sales at eFolder, will present how common and costly cloud application data loss is and what measures you can take to protect your organization from data loss.
SYS-CON Events announced today that G2G3 will exhibit at SYS-CON's @DevOpsSummit Silicon Valley, which will take place on November 3–5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. Based on a collective appreciation for user experience, design, and technology, G2G3 is uniquely qualified and motivated to redefine how organizations and people engage in an increasingly digital world.
SYS-CON Events announced today that IBM Cloud Data Services has been named “Bronze Sponsor” of SYS-CON's 17th Cloud Expo, which will take place on November 3–5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. IBM Cloud Data Services offers a portfolio of integrated, best-of-breed cloud data services for developers focused on mobile computing and analytics use cases.
In his session at @ThingsExpo, Tony Shan, Chief Architect at CTS, will explore the synergy of Big Data and IoT. First he will take a closer look at the Internet of Things and Big Data individually, in terms of what, which, why, where, when, who, how and how much. Then he will explore the relationship between IoT and Big Data. Specifically, he will drill down to how the 4Vs aspects intersect with IoT: Volume, Variety, Velocity and Value. In turn, Tony will analyze how the key components of IoT ...
When it comes to IoT in the enterprise, namely the commercial building and hospitality markets, a benefit not getting the attention it deserves is energy efficiency, and IoT’s direct impact on a cleaner, greener environment when installed in smart buildings. Until now clean technology was offered piecemeal and led with point solutions that require significant systems integration to orchestrate and deploy. There didn't exist a 'top down' approach that can manage and monitor the way a Smart Buildi...
SYS-CON Events announced today that Cloud Raxak has been named “Media & Session Sponsor” of SYS-CON's 17th Cloud Expo, which will take place on November 3–5, 2015, at the Santa Clara Convention Center in Santa Clara, CA. Raxak Protect automates security compliance across private and public clouds. Using the SaaS tool or managed service, developers can deploy cloud apps quickly, cost-effectively, and without error.
As-a-service models offer huge opportunities, but also complicate security. It may seem that the easiest way to migrate to a new architectural model is to let others, experts in their field, do the work. This has given rise to many as-a-service models throughout the industry and across the entire technology stack, from software to infrastructure. While this has unlocked huge opportunities to accelerate the deployment of new capabilities or increase economic efficiencies within an organization, i...
“All our customers are looking at the cloud ecosystem as an important part of their overall product strategy. Some see it evolve as a multi-cloud / hybrid cloud strategy, while others are embracing all forms of cloud offerings like PaaS, IaaS and SaaS in their solutions,” noted Suhas Joshi, Vice President – Technology, at Harbinger Group, in this exclusive Q&A with Cloud Expo Conference Chair Roger Strukhoff.
Scott Guthrie's keynote presentation "Journey to the intelligent cloud" is a must view video. This is from AzureCon 2015, September 29, 2015 I have reproduced some screen shots in case you are unable to view this long video for one reason or another. One of the highlights is 3 datacenters coming on line in India.
“The Internet of Things transforms the way organizations leverage machine data and gain insights from it,” noted Splunk’s CTO Snehal Antani, as Splunk announced accelerated momentum in Industrial Data and the IoT. The trend is driven by Splunk’s continued investment in its products and partner ecosystem as well as the creativity of customers and the flexibility to deploy Splunk IoT solutions as software, cloud services or in a hybrid environment. Customers are using Splunk® solutions to collect ...