Rami Barham, the Business Unit Manager for Cybersecurity at Al Jammaz, speaks about best-practice standards and frameworks that can help companies achieve and maintain data security and compliance
How has the need for data security and compliance changed over the past year?
Over time people start to recognize the importance of data in all life segments, and how we need to protect our data, this became on top of people’s tasks especially during last year as the need for remote access and sharing data become a must.
What are the best-practice standards and frameworks that can help companies achieve and maintain data security and compliance?
Compliance means ensuring an organization is complying with the minimum of the security-related requirements. Security is a clear set of technical systems and tools and processes which are put in place to protect and defend the information and technology assets of an enterprise.
Employees are the main key to protect the company data so companies need at least to be sure that employees know how to protect data, how to avoid pop-ups, unknown mails, and links, they must use strong password protection and authentication, always connect to secure Wi-Fi, Enable firewall protection at work and be sure they do same at home, invest in security systems, install security software updates and backup company files, keep a close connection with IT department, Employ third-party controls, Embrace education, training and security awareness.
Are there any regional data compliance regulations and frameworks, which companies that handle large amounts of public data need to follow?
I am sure that companies trying to follow data compliance regulations and try to achieve a regional framework, but as of now I believe the world still needs more efforts to reach global agreements.
What according to you are the five tips that companies need to follow to comply with data security regulations?
- Identify personal information that is created, received, and shared with others
- Secure personal data across the enterprise—and beyond—against data breaches and inadvertent disclosure
- Set up a system to respond to requests by people for data you have on them and who you share it with
- Create a process for producing personal information reports
- Create a complaint process for deleting information
Many countries have passed their own version of data protection laws recently. How does your company help its clients with securing their data and staying compliant?
We at Al-Jammaz, working hard to be sure we deliver the updated and top technologies to all customers in all verticals to match the local and global protection laws.
Do you believe the line between data security and data privacy has started blurring?
We can say yes and no, depends on the way the companies handle it. But in general, we all know data privacy is not an easy topic when we are talking about data security.