Saturday | 10 January, 2009
CIO
Privacy laws to address the human side of IT
Real impacts wont be felt for several years but IT must begin considering proposed changes.
Andrew Hendry (Computerworld) 13 August, 2008 12:55:37
Page:

The first stage of reforms, set to be implemented within a year's time, will address this process of simplifying and streamlining the Privacy Act, while the second stage, which will include statutory course of action for data and privacy breaches, will be looked at in 12-18 months time.

"First and foremost there is not going to be any real immediate impact in terms of changes of investment in either IT infrastructure or security infrastructure," said Gartner security analyst Andrew Walls.

"Part one is going to take a good 12 months to get all the actual regulations set out, then there will have to be some sort of compliance period so we're several years out from things really hitting the ground and organisations having to show compliance.

"But at the same time businesses should be looking carefully at the recommendations and the potential impact they will have on their business processes, their business models, and the infrastructure that supports all of those activities," he said.

One area of IT that will feel the impact will be the Human Resources department, where employee data will no longer be exempted under the ALRC's recommendations.

"That may affect internal practices and how security controls are applied. I suspect many organisations will have to look very carefully at how they manage employee data and ask themselves - if we have to treat that as private data, what are the implications?" Walls said.

According to security vendor Marshal's lead technical consultant, Oscar Marquez, internal traffic is a leading cause of data leakage, and organisations need solutions that monitor the flow of sensitive information like documentation, e-mails, and mobile-to-e-mail data.

"In essence, the new amendments are about being able to report on and monitor e-mail and Web use, internally and externally, before taking the necessary steps to prevent misuse," Marquez said.

"IT managers do not need to implement new technology for technology's sake. Instead they need to firstly educate end-users, as many data breaches can happen accidentally, and secondly, to update their internal policies to be in line with the Privacy Act. Industries such as health and financial services, as well as large companies, need to pay particular attention to these amendments."

Marquez cited the example of an end user at a health company who accidentally sent an entire database of contacts to a doctor, who in turn shared this with a pharmaceutical company for financial gain.

"This black market of information is exactly what the Privacy Act aims to prevent. End-users need to know their confidential data will be secured and not sold," he said.

Page:
More about Facebook, Attorney-General, Speed, ACT, Gartner, Marshal8e6, Westpac, Westpac
Related Topics
(Industries)
(Security)
(CIO Government)
(Government)
Additional Resources
Executive Guides
Whitepapers
white paper Read up on the latest ideas and technologies from companies that sell hardware, software and services.
Zones
Zone logoZones provide focussed content from CIO and leading technology partners.
Newsletter Subscription
Sign up for our CIO newsletters!
RSS Feeds
Featured Whitepaper Sponsors
  • White Paper
    Everything you need to know about email and web security (but were afraid to ask)
    What you don’t know can destroy your business. It’s hard to imagine modern business without the internet but in the last few years it has become fraught with danger. Read on to discover how internet security can give your business a competitive advantage.
  • White Paper
    Delivering the Power of Choice with Microsoft Dynamics CRM
    Join Ed Thompson, Research VP, featured analyst firm, Gartner, Inc., and Brad Wilson, General Manager CRM Microsoft Dynamics, for a new webcast, Delivering the Power of Choice with Microsoft Dynamics CRM, available now. Our panel will break down the best practices for getting the most out of CRM and you'll learn key recommendations you can implement in your organization. Additionally, you'll also hear Microsoft's vision for CRM.
  • White Paper
    Strategies for Eliminating .PST Files
    Join industry expert Martin Tuip to discover best practice strategy for the archival and removal of .PST files using email archiving. Learn how to ensure long-term email records are there when needed, and reduce the risk to your business and clients.
Market Place
Learn to use EMC Celerra IP Storage with Vmware Infrastructure 3 over iSCSI and NFS | Download white paper now
Understand the Value of Unified Communications | Download white paper now
Discover best practice strategies for the archival and removal of .PST files using email archiving
Discover why Ubiquitous Mobility is a key future component of Network Architecture | Download Forrester report now
Discover best practice strategies for the archival and removal of .PST files using email archiving
 

Smart SOA World Tour

Discover how SOA can create smarter outcomes for your business.

Attend and learn:

  • How SOA is helping leading companies to become more agile
  • Where you should be applying SOA processes in your company
  • The top SOA implementation mistakes to avoid

Click here for more information.
  • +

    CIO Live Podcast #79: Brent D Taylor, author of The Outsider's Edge: The Making of Self-Made Billionaires Part II 05 October, 2007 06:00:00

    For his new book, The Outsider's Edge: The Making of Self-Made Billionaires, social researcher Brent D Taylor spent four years of intensive research investigating the psychological make-up and backgrounds of some of the world's richest men and women, including IT luminaries Bill Gates, Larry Ellison and Steve Jobs. Taylor discovered that, despite working in different industries and coming from different upbringings, they all have one thing in common -- they are all outsiders.
    [ MP3 (7.32 MB) | Windows Media (5.67 MB) ]
  • +

    CIO Live Podcast #78: Brent D Taylor, author of The Outsider's Edge: The Making of Self-Made Billionaires 28 September, 2007 17:34:25

    For his new book, The Outsider's Edge: The Making of Self-Made Billionaires, social researcher Brent D Taylor spent four years of intensive research investigating the psychological make-up and backgrounds of some of the world's richest men and women, including IT luminaries Bill Gates, Larry Ellison and Steve Jobs. Taylor discovered that, despite working in different industries and coming from different upbringings, they all have one thing in common -- they are all outsiders.
    [ MP3 (7.56 MB) | Windows Media (5.14 MB) ]
  • +

    CIO Live Podcast #77: Panasonic Speeds Up Trans-Pacific File Transfers, Part III 21 September, 2007 07:00:00

    Part three in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance.
    [ MP3 (4.90 MB) | Windows Media (4.40 MB) ]
  • +

    CIO Live Podcast #76: Panasonic Speeds Up Trans-Pacific File Transfers, Part II 14 September, 2007 07:00:00

    Part two in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance.
    [ MP3 (5.89 MB) | Windows Media (4.84 MB) ]
  • +

    CIO Live Podcast #75: Panasonic Speeds Up Trans-Pacific File Transfers, Part I 07 September, 2007 07:00:05

    Part one in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance.
    [ MP3 (6.41 MB) | Windows Media (5.13 MB) ]
  • +

    TJX Maxx hacker banged up for 30 years 09 January, 2009 11:26:00

    Key figure in the infamous TJX Maxx Wi-Fi hack of 2005 has been sentenced to 30-years in prison by a Turkish court.
    Maksym Yastremskiy, the Ukrainian accused of being a key figure in the infamous TJX Maxx Wi-Fi hack of 2005, has been sentenced to 30-years in prison by a Turkish court.
  • +

    Data breaches rose sharply in 2008, says study 08 January, 2009 08:27:00

    More than 35 million data records were breached in 2008, according to the Identity Theft Resource Center.
    More than 35 million data records were breached in 2008 in the U.S., a figure that underscores continuing difficulties in securing information, according to the Identity Theft Resource Center (ITRC).
  • +

    Rogue SSL certificate exploit puts VeriSign on the spot 07 January, 2009 11:04:00

    Wishes "white hat" researchers had notified VeriSign before public demo.
    Following the success of researchers last week in creating a false SSL certificate based on VeriSign's RapidSSL brand, the company is scrambling to explain how it happened, how it's preventing it from reoccurring, and whether its other SSL certificate-generation services are at risk.
  • +

    With Gaza conflict, cyberattacks come too 05 January, 2009 08:03:00

    Pro-Palestinian hackers have defaced thousands of sites following attacks in Gaza.
    The conflict raging in Gaza between Israel and Palestine has spilled over to the Internet.
  • +

    5 ways to secure your Blackberry 18 December, 2008 12:58:00

    What do Tom Cruise and the McCain campaign have in common? They have both been bitten by the loss of a Blackberry. Mobile expert Dan Hoffman gives advice on how to keep your cherished mobile device safe, even if it's out of your hands
    What do Tom Cruise and the McCain campaign have in common? They have both been bitten by the loss of a Blackberry. Mobile expert Dan Hoffman gives advice on how to keep your cherished mobile device safe, even if it's out of your hands.
CIO Webcast Innovation #8 - What are the biggest roadblocks to IT's involvement in innovation at your company?
Watch the latest latest edition of CIO Innovation which is now available for download.
Watch the webcast
Sign up to the CIO Innovation update email


CIO Live Podcast #79: Brent D Taylor, author of The Outsider's Edge: The Making of Self-Made Billionaires Part II
Listen to the latest edition of CIO Live which is now available for download.
Listen to the podcast
Sign up to the CIO Live email
Get a job Careerone
Whitepaper


Read Whitepaper

IT Service Management Needs and Adoption Trends: An Analysis of a Global Survey of IT Executives

IT executives face the need to improve service delivery with limited resource increases. Two common strategies for achieving this are network and systems management tools and datacenter consolidation. Read on to disocover how you can make a strong business case for IT Consolidation.