Derrick Coston, CISA, CISSP, GIAC
It’s amazing to see on a weekly basis, that organizations are still not taking steps in teh right direction to protect information that it has on its customers and employees. Kacy Zurkus identified a troubling gap in her article “ Nearly Half of US Orgs Not Ready for CCDA ” Despite how there was a push by organizations, about a year or so ago, to be compliant with the EU General Data Protection Regulation (GDPR), there now appears to be a less push or concern. Is it because of the ability to enforce compliance. Well Politico has identified an alarming fact in their article “ How one country blocks the world on data privacy ” The GDPR is the world’s toughest standard for data privacy. But nearly a year later, its chief enforcer has yet to take a single action against major tech firms like Facebook and Google. I applaud the State of California for their efforts, however, will the state be able to use its power to enforce compliance? On paper...