Cyber Security
By Jane Lo ASM Correspondent
CISO Elite Asia 2018 (“Data Breach – Walk with Privacy, Security & Trust in a changing regulatory landscape, moderated by Verizon Threat Research Advisory Centre, Ashish Thapar). Photo Credit: CISO Elite Asia
7 Data Breach Highlights
T
he focus on the protection of data against
often with zero notice. Investigation the source of a
requirement by other jurisdictions lead to less
misuse, hacking, inadvertent human error
data breach or issue, contain it, verify the extent of
breaches is not clear. Ultimately, regardless of the
continues to grow as innovations such as
losses and—most importantly—limit the impact is
hard requirements, taking proactive measures and
Artificial Intelligence, Biometrics, Big Analytics
important. Plan now for the unexpected, test and
instituting robust controls are evidence that data
become more widely tested and adopted.
adapt as the organisation evolves.
protection is taken seriously. Most importantly,
Reflecting on the increasing importance of
embed the mindset to “plan for the worst, hope for
Rasa Sentosa Report and Spa Singapore, “Data
2.One of the challenges facing organisations is striking the right balance between harnessing new technologies and addressing data protection concerns. There is no easy
Breach – Walk with Privacy, Security & Trust in a
answer as data breaches continue to be a threat.
changing regulatory landscape) and ARiMI (Asia
The Verizon Data Breach Investigations Report 2018
4.Industrial Revolution 4.0 and the Internet of things enable the production and recording of voluminous data about consumer interaction and usage. There is yet not much transparency
Risk Management Institute) Risk Innovation Forum
(DBIR) cited that the 9 incident patterns identified
in how the data is being used for, with whom they
(Oct 25th 2018, Grand Copthorne Hotel, “Privacy,
in 2014 that still hold true today – such as Denial of
are being shared, or what securities are in place to
Security & Reputation - The Risk Management
Service, Payment Card Skimmers, Privilege Misuse,
protect the data. But basic steps can be taken to
Challenges posed by IoT & AI to Data Ownership
Cyber-Espionage.
guard against potential breaches such as regular
this topic, panels at two forums dived into the implications and challenges of data breaches: CISO Elite Asia 2018 (Oct 24th – 25th 2018, Shangri-La
and Protection and the Need for Regulations to Protect Business Relationships”). We gathered here the 7 highlights from the forums:
1.Incident response is as important as defense. Data breach events happen fast and
36 | Asia Pacific Security Magazine
the best”.
reviews of privacy settings on social media, being
3.Fragmented legal and regulatory landscape can encourage organisations to seek the “best” jurisdiction for certain business activities. Closing the gap may not necessarily
selective about the apps installed on phones,
lead to desired outcomes; for example, whether
5.Real-life case studies, such as the recent Sing Health incident, underscores the
adopting EU’s mandatory breach reporting
keeping anti-virus software up to date, encrypting sensitive data.