IT Security and Compliance
For just about any enterprise of any size, and as more and more businesses move to the Cloud, the productivity of it's workforce as well as the security and compliance of organizational data is the number one priority for many business leaders.
Covid-19 has forced many organizations to adapt a remote workspace for their users to stay productive and to ensure their safety, which has forced the basic productivity toolset and the way we conduct daily tasks to adapt and change to match new requirements.
Summary of Security requirements:
Multi-Factor Authentication (MFA)
Mobile Device Management (MDM)
Encrypted email and Data Loss Prevention (DLP)
Privileged Identity Management
This brought new challenges to business as to how to protect and secure their organizational data on remote devices. Along with the new Protection of Personal Information Act (POPI Act or POPIA) starting in July 2021, this added additional compliance requirements and complications alongside the remote workforce requirements.
Summary of POPIA compliance requirements:
Section 19 clearly lays out what needs to be done from a security perspective in great detail
A responsible party must secure the integrity and confidentiality of personal information in its possession or under its control by taking appropriate, reasonable technical and organisational measures to prevent:
Loss of, damage to or unauthorised destruction of personal information; and
Unlawful access to or processing of personal information.
In order to give effect to subsection (1), the responsible party must take reasonable measures to:
Identify all reasonably foreseeable internal and external risks to personal information in its possession or under its control;
Establish and maintain appropriate safeguards against the risks identified;
Regularly verify that the safeguards are effectively implemented; and
Ensure that the safeguards are continually updated in response to new risks or deficiencies in previously implemented safeguards.
Security and Compliance has become critical in the enterprise with managers also needing to focus on how to monitor performance of people working remotely.
First Technology Digital can assist enterprises of any size with assessing and creating a roadmap required to comply and secure their organizational data. A business case is critical to understand the how to and what technology can be used to accomplish this.
Interested? Get in touch - firstname.lastname@example.org