Skip to main content

Cybersecurity sees everything

We should mean almost, digitally. With serious considerations to best practices, widely acceptable principles including that of, directly and indirectly related, applicable laws and, if any, for the sake of thoughtful and sensible transparency. Almost everything, in this case is about, as nations and industries are already taking it as an initiative to protect entities such as people, enterprises, assets, properties including but not limited to information, which is the sole subject of information security specialists but it's reality is more complicated than arguing on which security can cover which area. Technology practitioners should appreciate it. Those who goes beyond a few specializations could realized it and make an effective position paramount to a cybersecurity responsibility. And the size of that responsibility may mean breaking and delegating it with various roles, with those who are effective and prudent in their jobs.
Post a Comment

Privacy Impact Assessment

Do you know what makes a Privacy Impact Assessment effective?

Organizations doing privacy impact assessment or PIA must make sure that their language and questioning is directed to the party which they required both practical (meaning completeness of processes being utilized) and truthful answer from.

If the PIA itself was designed and developed collectively by business, technology, legal and compliance practitioners putting every relevant element as a subject of business objectives, which doesn't tolerate counterproductive actions, then one might say, it's really hard to do this but then it would conclude and it's the best way to get into it really.

No guilty feelings. It's what the people really would experience which is considerably good and ultimately the organization's safety is better emplaced in the face of the searing cyberspace.

A PIA that's entirely an initiative of inexperience practitioner or a beginner in the job would show its shallowness and that can be very obvious to the other party who has good, if not real deal or expert, resource leading such a practical opportunity to secure business systems and related processes and the effect is usually satisfactory beyond privacy matters.

The same is true for the receiving party when, no matter the construct of the PIA requirement, they find it hard to answer, clearly there is absence of a right resource.

These entities may be showing they never consider such a role in their staffing and if they did but still lacking, the capability to identify and engage the right people who has the know-how to deal with such business requirement is dearth with foreknowledge and initiative. Just a little idea in these good stuff would have really made a helpful difference in the job.

A re-used of questionnaire being directed to one organization alone is not entirely effective. The answering party would see it right in their face that those questions were not for them! A business, technology or legal practitioner who knows its way in particular to data privacy would not bother returning the document, if it wouldn't ask the requesting party, those who wants PIA to be conducted against the company's data privacy processes and efforts, and have it answered, that the document they received is not necessarily useful for them. Of course, that is all about the effect of having honesty is the best policy in an entity, which is extraordinary in this time of continuously oppugning digital needs by those who can't, or won't like to, change the way they are, mostly due to obsolete knowledge and skills or laziness is beginning to be enjoyed as the norm, if not seeping, entirely. 

Working on a job just to appear that formality is being taken up would break it whatever pretensions are there almost immediately and when such manner saves those responsible, albeit temporarily, buying time, the technology is itself definitely broken from start because it is easy to manipulate whatever setup they have in place. The bottom line is that their performance will never get better with the same tactic and stakeholders and decision makers should be wary about it. Such thing can be detected as soon as new technology had been acquired and it didn't improve anything. From planning alone, this could have been in fact identified and debated. See that. Right?

We wrote about this subject in 2020 but our language were about data privacy as a whole which also cover privacy impact assessment as it is alone now.

Comments

Post a Comment

Popular posts from this blog

Jobs we observed in a system performance

They are made either any of the following- - Tech job, - Business job, - Nut job, or - Enterprise job. What's yours? Can you do it better from your existing drive? Whatever you do, your output should facilitate not just your organization's goal but a little more than what you originally planned. Leaders usually kept them in the mind, so subtle only them knows it, but with some useful and delicate strategies employed people really are doing a good job, and working to improve them, too. That's the beginning why corporate social responsibility, or even the consequential environmental, social and governance initiatives can be a potent move to do something, if pertinent or weighty is even the right word. That doesn't need an ostentatious resources but the effect is meaningful for stakeholders, everyone we meant.
Post a Comment
Continue Reading

Philippine telcos blocking entire SMS text with internet addresses in it

If you are sending SMS texts to your friends, family or colleagues and they contain internet or web address including IP and email addresses, and even a period or dot separating, regardless of, your words and numbers, they are automatically blocked and not going to be received by your waiting recipient. Cooler heads must prevail here especially if an important message is urgently being expected. IP version 6 address is fine. However, an IPv4 including localhost address (given automatically to every computers and network interfaces as their own alone designed for troubleshooting purposes), and your money in the billion figure using dot as separators would be blocked.  If you send "local.business, naman.naman etcetera" or any words that made you use dot in between them, as part of the text, they will be blocked. There are some, that isn't blocked in this category. Like check.iclassed, some.ent, whatever.local etcetera, that is because they do not form any domain name at all...
5 comments
Continue Reading

iclassed privacy policy, unbelievable at first sight

Those who, before engaging us and was reading our business conduct, alerts and notices , could not restrain themselves asking, "can you really do your job without keeping any data at all? At the end of the day, you should still be looking at those information and make sure you did, and will, do well. I am expecting a lot from you here, you said so yourself!" Now, that last sentence is so loud. We keep them, not in our premises, but yours. If you've been our clients, you'll know how persistent we are when it comes to the reliability and security of your systems, data and credentials. That's our responsibility, as is made popular by cloud computing, and we don't need to be in a cloud.
Post a Comment
Continue Reading