IBM Systems Magazine, Mainframe - March/April 2018 - 35
SPONSORED ADVERTISING CONTENT
"I believe that building
digital trust is what's
going to separate
companies that survive
versus ones that don't."
-Cindy Compert, IBM Cybersecurity
Leader, U.S. Public Sector Market, and CTO,
Data Security and Privacy, IBM Security
annual turnover or 20 million Euro, whichever's
greater. On top of this, other enforced penalties
could include preventing processing or halting
transfers of personal data. In addition, affected
Individuals can take legal action on their own, only
adding to potential fiscal and legal woes.
Should a breach occur in an organization,
noncompliance has the potential to become debilitating in terms of fines, lawsuits and the lack of
public confidence in an organization. Because large
breaches may need to be publically reported as part
of GDPR, they might prompt customers to do their
business with other companies, which could further
affect the bottom line.
But all is not lost. According to Compert, GDPR
has some ancillary benefits. As she explains, "GDPR
represents a tipping point for digital transformation. It's not just checking the boxes to become
compliant. By understanding what personal data
you collect and manage, and building trust by
being mindful of data protection practices such as
privacy and security by design, you can leverage
these activities to help you accelerate your journey toward a digital transformation. I believe that
building digital trust is what's going to separate
companies that survive versus ones that don't."
A company that
EU personal data
face stiff fines of
of their annual
turnover or 20
The Threat Is
With increased threat levels,
cyberattacks have become mainstream and we see new threats
from more venues than ever before.
Threats from the Internet of Things,
ransomware and malware, like
MIRAI, and others provide unlimited
paths into an organization's infrastructure and introduce more risk
than ever before.
Today's mainframe is just another
server in the data center, accessible internally and externally like
every Windows*, UNIX*, Linux* or
other server. Not only are mainframe
environments vulnerable to internal
malicious users, but also to external
hacktivists, criminals and competitors. To ensure critical assets are
properly protected, organizations
should perform regular mainframe
To prevent a cyberbreach, we
advocate a comprehensive security
assessment that includes collecting,
processing and assessing all relevant
customer data based on best practices. Upon conclusion a mainframe
security assessment should provide
an actionable report that includes
for remediating problems and security against future security breaches.
Protect your critical infrastrucWXUHÃDQGÃJDLQÃWKHÃFRQÀGHQFHÃ\RXÃ
need knowing your mainframe is
safeguarded and protected.
Of course, every organization is at a different
maturity level in terms of information governance
and security, especially if it's in a highly regulated
industry such as banking, finance or healthcare.
The organization likely has many controls, such as
encryption, already in place and may just need to
augment them. If an organization hasn't done much
work in the data-protection space, it may likely
need additional guidance.
With that in mind, organizations should take
a deep internal dive into the types of data they
CMO, Vanguard Integrity
Brian has a 25-year track record
in global marketing, corporate
strategy, business development
and global branding.
MARCH/APRIL 2018 // 35