There used to be many unknown factors for information security managers to take into account when implementing and maintaining a security standard. That is no longer the case. A new planning tool from Neupart, neupartOne, creates a well-arranged plan for the compliance work and automatically combines all the tasks in a single annual plan.
All alone in the world. This is a feeling that many security officers with sole responsibility for information security can recognise as they are faced with more and more requirements for their compliance programme, without any extra resources to help them carry out their tasks. But never fear, for the managing director of Neupart is here to the rescue with five great tips to increase efficiency and help management to better understand information security.
ISMS performance monitoring allows security officers to document specific business value while also enhancing the level of security within the organisation. A Neupart white paper provides inspiration on how to select, define and monitor effects in an ISMS solution.
With an annual cycle for information security, you can ensure that the right security processes are in place, and that the company’s internal resources have enough time to solve the many other tasks that require attention.
More [fa icon="long-arrow-right"]
- After 25 May, businesses may suffer from a mental information security hangover
- What does the future hold now that the preparations are complete, and the rules have come into force?
- A security expert from Neupart offers advice and recommend - among other things - that future information security work be organised and compiled into an annual cycle
Due both to an eagerness to do things correctly and a fear of doing things wrong, many companies prepare far more records of their processing activities than necessary. A Neupart expert explains how you can group together your processing activities and save yourself many hours of (wasted) work.
Has the organisation done all it can to protect data subjects before, during and after a security incident? This is essentially the question that both private and public organisations must ask themselves when defining accountability and imposing sanctions in the aftermath of
a personal data security breach
More [fa icon="long-arrow-right"]
a personal data security breach
Neupart's new white paper, GDPR - Handling Personal Data Security Breaches in Three Phases, considers the formal requirements for handling a personal data security breach in accordance with GDPR and sets out guidelines for the preparation and anchoring of appropriate contingency measures.
Picture this: it’s the end of May and you’ve managed to fulfil the criteria of the EU Data Protection Regulation - you’ve achieved GDPR compliance. But how do you make sure you stay compliant in the future?
No doubt the GDPR implementation project was big and required a team effort. There might even have been extra resources allocated, as everyone realised the importance of getting this right. But now that the deadline has passed, and the goal has been met, your co-workers need to get back to their day-to-day assignments. So how do you successfully maintain continuous GDPR compliance with half the people, and maybe even half the resources?
- Guidance and good advice for carrying out a DPIA
For some organisations, the DPIA is high on the list of GDPR related assignments that need to be sorted. But for many, the DPIA can actually wait – or at least be simplified so that it doesn’t require so many resources. The Director of Neupart explains when and how you should carry out a DPIA.
The EU Data Protection Regulation states that you must train your employees in handling - and securing - personal data. However, it doesn't say anything about how you should train your employees in handling personal data.
"That part is open to interpretation, so you have to get creative," says Lone Forland, Neupart's product specialist who also works with information security campaigns.