• Skip to main content
  • Skip to primary sidebar
  • Skip to footer

Commonwealth Sentinel

Kentucky Cyber Security

MENUMENU
  • Home
  • About
    • About: Sheri Donahue
    • About: Leo Haggerty
    • Career Opportunities
  • Services
    • Vulnerability and Threat Evaluation
    • Transformation Management
    • CISO Management Services
    • Incident Response Management
  • News
  • Blog
  • FAQs
  • Contact Us
You are here: Home / Blog / It’s not Data Privacy Week AGAIN?

commonsent / January 26, 2023

It’s not Data Privacy Week AGAIN?

Data Privacy Week

January 22nd through the 28th is Data Privacy Week. It’s okay if it snuck up on you because this is only the second one.

Just like Cyber Security Awareness Month in October, the purpose of Data Privacy Week is to bring attention and awareness to the importance of protecting your data online. That is, to make you and those who collect your data aware of its responsibilities and importance.

At the risk of getting too much into the nerd weeds, let me explain a few foundational tenets of cyber security. The shorthand objectives of cyber security are referred to as the “CIA Triad.”

This is not the CIA that most of us think of when we hear the term. The CIA Triad refers to “Confidentiality, Integrity, and Availability.” Let me explain just a little further, in reverse order.

Data Privacy: Availability

Availability refers to the objective that authorized users are able to access the information when needed. For example, cyber security is meant to prevent a distributed denial-of-service (DDoS) attack against a website or the encryption of data and lock down systems in a ransomware attack.

Data Privacy: Integrity

Integrity is the assurance that data has not been altered or corrupted. This would include an attacker modifying records for financial gain, such a making fraudulent transactions to an account.

Data Privacy: Confidentiality

Confidentiality is the assurance that unauthorized individuals are not able to gain access to information. For example, a ransomware attack steals information and then demands a ransom so the attacker will not release the information. Protections include firewalls, access control lists, encryption, and multi-factor authentication. (Notice that “passwords” is not on the list because that is a very weak control we need to remove from our comfort zone of protection.)

So, the purpose of Data Privacy Week is to focus on the importance of Confidentiality (and, to some extent, Integrity).

As with all areas of protection, it is the responsibility of the organization and the individual.

Your responsibility as the owner of your data includes being mindful of who you share your data with. Don’t post every nugget or your personal life online. Be sure to use unique passwords for every account (passphrases are better). Using a password manager makes it easier. Use multi-factor authentication (MFA) whenever possible. Keep your operating systems, software, apps, etc., updated, and use automatic updates to ensure they are made as soon as possible.

A recent study by European cellular provider Orange showed that only 20% of their users installed patches within 30 days of the release of the patch. This would be like refusing to take medication when you get sick. The solution is available. But it does no good if you do not use it.

As for organizations, they have a fiduciary responsibility to their customers, employees, and all stakeholders to protect their information. Not only is it the right thing to do, it Is also good for business. If an organization has been hacked and personally identifiable information (PII) accessed, customers will lose faith in that organization. Reputation will suffer, and it may cause a loss of business or income. It could even cause an organization to go out of business. Organizations should employ good security practices and reassure their customers that they are protecting their interests. Policies that strictly manage access control (including least privilege, MFA), conducting network scans, using endpoint detection and response, making backups, and doing pentests as well as training staff to ensure a mature cyber security environment, will help to protect data and the organization’s future existence.

The security of your data is not only a matter of privacy but also a matter of protection. Once it’s gone, it’s gone.

Do you prioritize the safety and security of your organization? Allow Commonwealth Sentinel to be your partner in risk reduction and ensuring the well-being of all. Our comprehensive services range from software and hardware solutions to training and policy implementation. Contact us at (502) 320-9885 to learn more about how we can help you achieve peace of mind.

Filed Under: Blog

Primary Sidebar

LOOKING FOR A FREE CYBER SECURITY CONSULTATION?

Do you think your organization is at risk of being targeted by cyber criminals? Unfortunately, organizations of all sizes are vulnerable. It’s predicted that by the end of 2023, cyber crimes will result in a loss of $8 trillion, which is almost a third of the USA’s GDP in 2022. It’s essential to take precautions to protect your organization from these threats.

Fill out the form below to begin your Cyber Security Consultation. We will follow up with you to discuss the next steps.

Don’t be a sitting duck!

More Cyber News!

  • Wake-up Call: Cyber Security Compliance Doesn’t Belong with the IT Department
  • The Cyber Security Dangers of Outdated Technology
  • Business Email Compromise BEC…The Silent Killer
  • Ransomware: The Growing Threat and How to Fight Back
  • Are you a target for spear phishing? Learn how to protect yourself.

Footer

CONTACT US

Address:
Commonwealth Sentinel Cyber Security
1230 Us Highway 127 S Suite 5 Frankfort KY 40601
Phone:
(502) 320-9885

ABOUT US

Cyber security consulting for local governments, non-profit organizations, and small businesses facing the threats of the cyber world.  At Commonwealth Sentinel, we are passionate about helping people be cyber-safe!

FOLLOW US

  • Email
  • Facebook
  • LinkedIn
  • Phone
  • Twitter
  • YouTube

Copyright © 2023 Commonwealth Sentinel

We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies.
Cookie settingsACCEPT
Privacy & Cookies Policy

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these cookies, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may have an effect on your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Non-necessary
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.
SAVE & ACCEPT