Netskope gives another warning to businesses struggling with GDPR compliance

(c)iStock.com/maxkabakov

An overwhelming 94% of cloud apps in enterprises across EMEA are not enterprise-ready, while two thirds of overall cloud services are not up to scratch, according to the latest research from Netskope.

The findings, which appear in the company’s latest quarterly cloud report, found that 82.4% of services do not encrypt data at rest, 66.4% of cloud services do not specify that the customers owns the data in their terms of services, while 42% do not allow admins to enforce password...

By James Bourne, 12 January 2017, 0 comments. Categories: Compliance, Data & Analytics, Data Management, Security.

‘Security by design’ and adding compliance to automation

(c)iStock.com/maxkabakov

By Jason McKay, CTO and SVP of Engineering, Logicworks

Security is “job zero” for every company. If you are putting your customers or users at risk,  you will not be in business for long. And that begins with taking a more proactive approach to infrastructure security — one that does not rely on the typical protective or reactive third party security tools, but builds security into your infrastructure from the ground...

By Logicworks, 09 January 2017, 1 comment. Categories: Compliance, DevOps, Infrastructure, Security.

The hidden dangers of legacy technology – and how to resolve them

(c)iStock.com/TiSanti

Every business has that one legacy system they can’t seem to let go of. You know you’ve got one - a relic hidden away in some dusty server room. But are you aware of the damage these outdated systems can, will and may already be having on your organisation?

The damage inflicted by legacy technology can range from minor systems issues through to major events that could put your organisation out of business – and it’s important to know the hidden dangers.

Increased downtime...

By Ed Jones, 10 October 2016, 0 comments. Categories: Compliance, Data & Analytics, Data Management, Security.

How Great Western Railway is getting its compliance on the right track

(c)iStock.com/JoeDunckley

Great Western Railway (GWR) has enlisted the help of CoreStream to provide a new system for its compliance and regulations.

Like many organisations, ensuring compliance is vital – but for GWR it may count more than others. The railway operator is governed by a franchise agreement which includes more than a thousand obligations – and failing to comply with them can result not only in fines, but also disqualification from future franchise bids.

As a result, the company...

By James Bourne, 28 September 2016, 0 comments. Categories: Compliance, Data & Analytics, Data Management, Security.

Why security and compliance are still the main blockers to cloud adoption

(c)iStock.com/LPETTET

According to the Cloud Industry Forum, 80% of UK companies are adopting cloud technology as a key part of their overall IT and business strategy. However, one of the perceived barriers to cloud adoption continues to be concerns around security and compliance, which was the key topic of discussion at a recent techUK panel in which iland took part. During this discussion, we talked about the fact that nine out of ten security professionals worry about cloud security.

One of the key aspects that...

By Monica Brink, 16 August 2016, 0 comments. Categories: Compliance, Data & Analytics, Data Management, Security.

Microsoft secures ISO 27017 security certification around cloud-specific threats

(c)iStock.com/Gajus

Microsoft has announced it has obtained ISO 27017 compliance, a new cloud-based security certification published at the end of last year.

The certification from the ISO, the global organisation which has published more than 21,000 international standards across a variety of industries, is newer and subsequently less known than the ISO 27018 standard, which sets out guidelines to protect personally identifiable information (PII).

Microsoft claimed to be the first adopter of ISO 27018, in

By James Bourne, 04 August 2016, 0 comments. Categories: Compliance, Microsoft, Security.

ISO compliance in the cloud: Why should you care, and what do you need to know?

(c)iStock.com/hh5800

More and more organisations are looking to move to cloud to benefit from scalability, cost reduction and the ability to launch new service offerings fast.

The dynamic nature of cloud however necessitates security and compliance controls that frankly can be daunting. Issues around mobility and multi-tenancy, identity and access management, data protection and incident response and assessment all need to be addressed. And with multiple modes – SaaS, PaaS, IaaS, public, private, hybrid...

By Frank Krieger, 18 July 2016, 1 comment. Categories: Compliance, Data Management, Security.

Egnyte focuses on data governance and reshapes EFSS strategy with Protect release

(c)iStock.com/wavebreakmedia

Enterprise file sync and share (EFSS) firm Egnyte has announced the launch of Egnyte Protect, a product which aims to give IT and line of business greater control and visibility of their content both in the cloud and on-premise.

The move positions Egynte away from the traditional EFSS buckets and moves the firm towards data and information governance, a space Egnyte claims to be worth eight times more than their current opportunity. Isabelle Guis, chief marketing and strategy...

By James Bourne, 07 June 2016, 1 comment. Categories: Compliance, Data & Analytics, Data Management, Enterprise, Software, Storage.

The top five in-demand cloud security skills for 2016

(c)iStock.com/Jirsak

The cloud computing market continues to expand at a phenomenal rate. According to a recent report from IDC, worldwide spending on public cloud services will grow 19.4% annually through to 2019. Six times the rate of overall IT spend growth, this will double the current spend from $70 billion to $141 billion.

As more businesses transition to the cloud this will drive up demand for IT professionals with the skills to make the most of the technology. A market, which...

By Ed Jones, 20 April 2016, 0 comments. Categories: Compliance, Security, Vulnerabilities.

Why financial firms are missing out by not embracing the cloud

(c)iStock.com/xijian

The financial sector’s high security and compliance standards have traditionally made it something of a laggard in the adoption of cloud computing. Yet there are indications that momentum is shifting and finance institutions are beginning to benefit from the agility, flexibility, speed and innovation that is missing when running large, on-premise data centres.

But just how secure can customer data and commercial operations be when stored and running on someone else's infrastructure?...

By Tony Connor, 16 March 2016, 1 comment. Categories: Adoption, Compliance, Infrastructure.

Analysing security and regulatory concerns with cloud app migration

(c)iStock.com/baluzek

As businesses look to clouds for faster, more flexible growth, they confront significant challenges from a legacy application base that has varying levels of cloud suitability. It is therefore worth examining how security and compliance requirements can impact choice of cloud or architecture strategies within a cloud. 

Maintaining privacy for data that must be protected for business or regulatory reasons is a substantial concern in cloud migration, public or private. Security and...

By Bryan Solie, 11 March 2016, 0 comments. Categories: Applications, Compliance, Data & Analytics, Data Management, Security.

The EU General Data Protection Regulation: Prepare for change

(c)iStock.com/xijian

The EU’s wide-ranging rules on General Data Protection Regulation (GDPR) are set to significantly impact all businesses, whether in the EU or further abroad. From 2018, any organisation that collects, uses or shares personal information about European citizens will have to demonstrate compliance with the hotly contested law. This includes using various techniques to ensure that the protection of data is built into the design and infrastructure of an organisation by default.

Securing the data...

By Iain Chidgey, 29 February 2016, 0 comments. Categories: Compliance, Data & Analytics, Data Management, Data Sovereignty, Security.

Challenges and opportunities securing data in a world without borders

(c)iStock.com/Matej Moderc

Data today is moving and multiplying at pace across boundaries, platforms and applications. With the growth in cloud adoption, social media and mobility, information very rarely stays within the secure parameters of the enterprise anymore. 

More and more businesses are looking to reap the benefits of the cloud. A recent study from the Economist Intelligence Unit found that the most mature enterprises are now looking to...

By Greg Hanson, 24 February 2016, 0 comments. Categories: Compliance, Data & Analytics, Data Management, Security.

A five step crisis plan to prepare for the pending data protection legislation

(c)iStock.com/zig4photo

The clock is officially ticking for organisations to get their data protection policies in order, now that the final draft and approved text have been made available for the General Data Protection Regulation to replace the existing EU Data Protection Directive.

The new regulation is expected to come into effect in 2018 and will require businesses to put a much stricter focus on data protection. The headline items for organisation that collect or process EU citizen records are:

  • They must notify their supervisory authority of a data breach...

By Neil Thacker, 19 February 2016, 0 comments. Categories: Compliance, Data & Analytics, Data Management, Data Sovereignty.

How to ensure enterprise cloud app use complies with the GDPR

(c)iStock.com/Creative-idea

After months of fine tuning and approvals from various bodies, the EU General Data Protection Regulation (GDPR) is almost upon us.

When the GDPR finally becomes law in spring of this year after passing a final stage of approval, organisations will have two years to comply with the regulation. Two years might seem plenty of time, but the complex picture of cloud use in modern enterprises means that GDPR compliance will be a challenge. A recent Netskope and YouGov survey found that...

Businesses not convinced of keeping up with EU data protection regulation

(c)iStock.com/hh5800

Only one in five companies say they are confident of complying with the upcoming EU General Data Protection Regulation (GDPR), according to new research released by Netskope.

Worryingly the research, which polled more than 500 businesses, found a similar number (21%) expect their cloud providers to handle compliance obligations on their behalf – a fact which is not the case according to the wording of the GDPR.

Only 7% of businesses polled said they had a solution in place for...

By James Bourne, 08 February 2016, 0 comments. Categories: Compliance, Data Management, Data Sovereignty, Privacy.

The cloud is the limit: Disaster recovery, compliance, and other key 2015 trends

(c)iStock.com/roberthyrons

We are well into the first month of 2016, and many predictions from the cloud sector have started to reveal different trends that we may see over the next 12 months. In 2015 we saw IaaS (infrastructure as a service) and PaaS (platform as a service) growing 51%, with cloud firmly being pushed into the limelight. Looking to the future, there are many indications of what to expect in the year to come, including improvements to current-generation cloud environments as well as private...

By Monica Brink, 13 January 2016, 0 comments. Categories: Compliance, Disaster Recovery, Security.

Compliance key to keeping data on-premise – but also reliability at scale

(c)iStock.com/Erik Khalitov

The majority of organisations surveyed by IDG and Globalscape argue compliance, reliability at scale and tracking file movement were key reasons to keep data on-premise.

82% of firms cite confidence in meeting compliance mandates as a benefit of using an on-premises enterprise file transfer solution, with 37% viewing it as critical. Reliability at scale was also seen as critical by 35% of respondents, alongside the ability to track file movement (29%) and the ability to integrate...

By James Bourne, 15 October 2015, 1 comment. Categories: Big Data, Compliance, Data & Analytics, Hybrid, Software, Storage.

New report shows finance sector becoming more comfortable with cloud adoption

(c)iStock.com/borisyankov

Analysing cloud adoption across industry verticals, the banking and financial industry is as good a yardstick as any to assess progress due to its stringent data security requirements. A new report from CipherCloud shows financial firms have an increased confidence in cloud technologies; 100% of respondents said they put certain personally identifiable information (PII) in the cloud.

This does not extend to all PII however – only one in three respondents said they use the cloud...

By James Bourne, 30 July 2015, 0 comments. Categories: Adoption, Compliance, Data Management, Security.

Why UK data centres lead the world for UK businesses

(c)iStock.com/Tuomas Kujansuu

Today, many UK-based organisations face a significant set of data sovereignty challenges when they are considering moving their data to the cloud. Data residency and privacy rules and regulations differ from country to country, so users of cloud services need to think about the rules that cover each of the jurisdictions they operate in, as well as the rules that govern the treatment of data at the places where cloud service providers store their data. There are various merits of...