Won't Somebody Please Think of the Data!

Explore strategies for protecting sensitive data and preventing internal database fraud in this 45-minute LASCON conference talk. Delve into the critical importance of data security in maintaining client trust and avoiding legal complications. Examine real-life scenarios and learn from Sarah-Jane Madden's research on detecting internal threats. Discover how engineering and operations teams can collaborate to safeguard valuable corporate data. Gain insights into the impact of GDPR on data protection practices, the concept of data minimization, and the roles of data controllers and processors. Understand the significance of separation of duties, knowing your data, and recognizing that there is no one-size-fits-all solution to data security challenges.

Welcome
Who am I
Disclaimer
People people people
Joshua Cantor
Whats the cost
What are companies doing
Data is king
Equifax 2017
You failed
Verizon 2017 DBI
Illustrative Scenario
What I did
Takeaways
Separation of duties
Know your data
There is no silver bullet
Data Protection Act vs GDPR
The Road to GDPR
Common rules across the EU
Data minimization
Data controllers
Processing data