Data-Labor-Technology

Technology stocks are suffering one of their worst beatings in years, as investors reassess a sector that was once considered the growth engine of the global economy but now faces the prospect of greater regulatory scrutiny.

by Jon Hyman, co-founder and CTO at Braze

Modern life is creating a flood of information. In fact, 16 trillion gigabytes of data were created in 2016 alone, and that number is expected rise tenfold by 2025. Mobile devices allow brands to gather more nuanced customer data than ever before, providing actionable insights into what people value and how they engage–the kind of insights that strong customer relationships are built upon.

But these relationships are also built upon trust. Customers trust that brands will keep their data safe and private—and they trust them to use that data responsibly in turn. To earn that trust, brands need three essential things: a security philosophy, a plan to identify and address security needs and a clear roadmap.

 

Putting privacy and security at the core of your business

Keeping data private means being vigilant about managing access to information, and ensuring that you always understand where data is coming from, as well as understanding when it can and can’t be used. Something that’s much easier to accomplish if you emphasize data privacy and security across your organization from the start.

In turn, strong security requires a smart development process. If your company is pushing out code that is not being adequately reviewed, it is a security risk on par to a lack of traditional safeguards, such as firewalls and virus protection.

 

Demonstrating a commitment to security and privacy

Securing your data is essential, but it’s just as important to demonstrate your data security capabilities to customers and partners. Brands could consider putting together a security attestation roadmap featuring some of these common certifications and actions:

• Engage a security vendor to carry out digital security audits and penetration tests
• Evaluate security controls against the SANS Institute’s Cybersecurity Risk Framework
• Implement the U.S.’s Health Insurance Portability and Accountability Act (HIPAA)’s data privacy and security rules
• Complete the Service Organization Control (SOC) 2 Type 1 examination, developed to protect systems against unauthorized access
• Update data policies and contracts with technical partners to ensure material compliance with the EU’s General Data Protection Regulation (GDPR) by May 25, 2018

Some of these steps can be accomplished in a matter of weeks, but others, such as the SOC 2 examination, can take more than 18 months from start to finish. The SOC 2 certification is the gold standard, as it touches on every element of security from physical infrastructure to software safeguards, as well as the procedures a company has in place for those with access to its systems.

It’s a major investment in time and resources, but a necessary investment all the same. By finding the certifications that are vital for your business and investing in expert legal and security guidance, brands can improve on data privacy and security while showcasing a commitment to data protection.

 

How to embrace a privacy and security practice

To ensure you are focusing your efforts, take a holistic view of the organization and use that understanding to complete a security risk assessment. For digital security, embrace traditional measures like firewalls, encryption and virus scanners, in addition to two-factor authorization and IP whitelisting, to prevent unauthorized access.

However, digital security isn’t just about keeping data safe from outside intruders—it also means using things like role and permission management to ensure that only the right members of your team have access to that data. Physical security matters, too. You can have world-class cybersecurity protections, but if you don’t secure your company’s physical assets by installing security cameras, requiring ID badges, maintaining maintenance logs and making sure that guests can’t just roam around your offices unescorted, you’re not really securing your data.

Security isn’t just about safeguards; policies and processes matter too. Role-based permissioning can’t work effectively, for instance, without a process for terminating access when employees leave the company. In addition, if your brand shares customer data with technical partners, you need to fully understand their security measures.

 

Privacy and security is a journey

Security doesn’t stand still. Technology keeps shifting, new threats continue to crop up, and last year’s secure system may suffer from previously unknown vulnerabilities today. Stay ahead by making security and privacy a priority every day by instituting strong processes, staying alert to the changing security landscape and choosing partners with the same mindset.

To dig a little deeper, check out #NoFilter: Braze on Security.

The post Make security a mindset appeared first on Digiday.

The two-year relationship between Pizza Hut and its creative agency of record, Droga5, will end in June, Adweek confirmed today. “Pizza Hut and Droga5 have mutually agreed to part ways,” a Droga5 spokesperson said in a statement. “We are proud of the work produced together. The companies will continue to work together through June 2018.”…

Two creatives from R/GA Portland and an art director think they’ve found a way to revive analog photography with, of course, a bit of help from the analog darling Polaroid. “With the rise of digital photography and especially in the work and the portfolios that we see, it felt like in a way a little…

Facebook, Twitter and Instagram users believe the children are the present, as the 2018 Kids’ Choice Awards on Nickelodeon dominated the Nielsen Social Content Ratings for the week of March 19. The awards show tallied 7.953 million interactions across the three social networks, far outdistancing the two World Wrestling Entertainment offerings from USA Network that…

The eighth and final season of the iconic HBO original series Game of Thrones is still one year away from premiering, but Major League Baseball fans will be able to get their GoT fix in the months ahead. Major League Baseball and HBO announced a renewal of their partnership to bring customized Game of Thrones…

Facebook Inc. Chief Executive Mark Zuckerberg expects he will have to testify at U.S. congressional hearings, though he hasn’t formally accepted any of the committee requests for him to appear, people familiar with the matter said.

No James-Bond-style courier-spy is complete without his beautiful but rugged suitcase, says a new five minute ad from luggage maker Tumi. Alexander Skarsg?rd of True Blood and Big Little Lies fame plays a mysterious man of impeccable taste and considerable means in the moody fashion campaign from EP+Co. He embarks on a cloak-and-dagger mission assigned…

Apple said it added support for its Pencil digital stylus to the $329 entry-level iPad, as the device maker tries to shore up its dwindling share of the U.S. education market.

Agencies aren’t the only one struggling with diversity issues. The Association of National Advertisers (ANA) announced the finding of its inaugural “Scorecard” evaluating diversity among chief marketing officers of its client-side members at its Brand Masters Conference in Dana Point, Calif. today and while the findings suggest some progress with gender diversity, ethnic diversity lags…