Privacy and Security Awareness during Software Development

Give your team additional skills to help prevent information leakage
Home
Training - Privacy
Training - Security
Resources & Blog
About Us
Contact Us
Site Map
Do you have a specialized training program for your Software Development teams?
 
The best security will not prevent information leakage. 

Security and Privacy principles need to be integrated into your Software Development Lifecycle processes.  Your development team needs a clear understanding of what Personally Identifiable Information or Protected Health Information consists of, and the techniques that can be employed to reduce or eliminate the disclosure of this information to unauthorized individuals.
Data Breach Notification Laws
 
As of December 16, 2008, 44 states, the District of Columbia, Puerto Rico and the Virgin Islands have enacted legislation requiring notification of security breaches involving personal information.
 
A number of states (California for example) allow entities to forgo the notification process if the data that was breached was encrypted.  Many states require notification even if the data was encrypted.
 
View our Privacy Awareness Seminar Brochure here
 
Get more information on how to have an on-site awareness seminar delivered to your organization by sending an email to info@eprivacyawareness.com
 
Average total per-incident costs related to a Data Breach in 2007 were $6.3 million.
 
The 2007 Annual Study by the Ponemon Institute on the Cost of a Data Breach shows that the cost of failing to protect customers' private data is on the rise. 
 
According to the study, data breach incidents cost companies $197 per compromised customer record in 2007, compared to $182 in 2006.   Lost business opportunity, including losses associated with customer churn and acquisition rose 30 percent from $98 in 2006 to $128 in 2007.
 
Do you have a Awareness Training program in place to satisfy requirement 12.6 of the PCI Data Security Standard?
 
12.6-  Implement a formal security awareness program to make all employees aware of the importance of cardholder data security.
12.6.1 Educate employees upon hire and at least annually (for example, by letters, posters, memos, meetings, and promotions)