PREDICTIVE intelligence enhancing both data security and privacy , consider asking the following key questions :
• Does it provide clear benefits ? The potential privacy risks of a security solution are only acceptable if it also reduces the risk of a data breach .
• Does it minimise access to personal data ? A security solution should minimise the amount of potentially sensitive data it accesses and processes .
• Does the company prioritise security ? Check how the company has handled past security incidents and prioritised security investment .
• Does it meet regulatory requirements ? Verify that the company has privacy-focused certifications such as ISO 27701 and ISO 27018 , is certified to the prevailing local and international data privacy frameworks . If a company has these certifications in addition to standard security certifications such as PCI DSS , ISO 27001 and SOC 2 Type II , it ’ s a great sign that a vendor goes above and beyond on privacy and security .
Assessing all these criteria for the 60-plus security tools typically employed by an average organisation can be a substantial undertaking . This underscores the compelling case for security consolidation . Conducting thorough due diligence on a single vendor offering a comprehensive suite of capabilities is more manageable than conducting a superficial assessment of multiple individual point security products .
Privacy-led security
An essential factor supporting security driven by privacy is the extent of the Cloudflare network . Covering 20 % of all Internet sites , Cloudflare shields a significant portion of Internet traffic , contributing to Cloudflare ’ s threat intelligence without jeopardizing the privacy of end-users for its customers .
WWW . INTELLIGENTCISO . COM 35