Integrated Systems

ICO letters

by msecadm4921

Christopher Graham, the information commissioner, announced plans to issue a letter to local government chiefs warning them to get the poor data handling within councils under control. The letter follows similar action taken by the Information Commissioner’s Office (ICO) last year when it sent a letter to Data Protection Officers (DPOs) in the health sector.
 

Ross Brewer, vice president and managing director for international markets, LogRhythm, has made the following comments:
 
“Compared with the positive steps the EC is taking with the new Data Protection Directive, this announcement from the ICO feels pretty limp. Healthcare based data leaks have continued to make the news since the letter to DPOs in September so it can’t be claimed that this approach has had success in the past.
 
“Recent research from OnePoll [OnePoll, October 2011, survey of 2000 UK consumers] found that the public is hungry for real action in this area. When asked if organisations are doing enough to secure sensitive data 81 percent said they thought that they needed to try harder. When asked about specific sectors, only 25 percent of respondents stated that they thought public sector organisations could be trusted to keep data safe. The ICO’s letter writing campaign is unlikely to placate a public that seems to have had its fill of irresponsible data protection.”
 
While Brewer is unimpressed with the ICO’s decision to send letters to local government authorities, he did agree with Christopher Graham’s assertion that “good data practices have benefits beyond avoiding fines”.
 
“Many organisations need to move away from compliance led IT to a best practice model. By embracing approaches like Protective Monitoring they will find they receive a host of benefits as well as enhanced data security. By continuously monitoring 100 percent of log data generated by systems it is possible to identify seemingly unconnected events that indicate anomalies and enable real-time remediation. However, this approach also helps organisations to spot operational inefficiencies that may be directly responsible for the loss of time and money,” said Brewer. 

Related News

  • Integrated Systems

    Plugfest in Rome

    by Mark Rowe

    ONVIF, the US-based standardising body for IP-based physical security products, hosted its 21st Developers’ Plugfest in Rome. Some 30 developers and engineers…

  • Integrated Systems

    Technology Day

    by Mark Rowe

    Reliance High-Tech, the security technology integrator, has announced its next Technology Day. It runs on Thursday, March 24, at Mercedes-Benz World in…

Newsletter

Subscribe to our weekly newsletter to stay on top of security news and events.

© 2024 Professional Security Magazine. All rights reserved.

Website by MSEC Marketing