Co-Founder & Chief Operating Officer
Privacy and cybersecurity continue to be top-of-mind with new incidents hitting the headlines weekly. In a new 15-minute “coffee chat” format for The Inevitable, we sat down for a straight-to-the-point one-on-one with Citrix’s Chief Privacy and Risk Officer, Peter Lefkowitz on privacy and cybersecurity. With his finger on the pulse of U.S. federal privacy legislation and concerns of top CPOs, Peter shared the trends he’s seeing and what he believes is in store for 2021.
5 Takeaways on Data Privacy From Peter:
- Remote work is here to stay. Enterprises need available yet secure computing for employees
- Zero trust is the latest iteration on defense in depth - assume no connection is trusted, the environment is unprotected
- Governments standards will be strengthened to address, so new more granular controls will be audited
- Privacy phase 3 or "advanced privacy" - first phase was writing policies, second phase was accountability, third phase is sitting with security officers to understand systems in depth
Why is this conversation so timely?
More brazen security incidents. The growing concern over cybersecurity incidents may have hit a fever pitch in December when the U.S. federal government came under attack by suspected Russian hackers. New details surrounding the attack continue to emerge and the vulnerabilities illustrated prove that even organizations thought of as highly secure are susceptible to security incidents.
More PI is digital. With more and more of our personal information (PI) moving online, the importance of data privacy and security is increasingly important. More and more reports like the recent 60 Minutes story on the Chinese government collecting DNA and personal health information (PHI) from Americans are coming to light in the wake of the COVID-19 health crisis.
Consumer data privacy concerns. Consumers are increasingly aware of and protective of their online personal data rights. Not to mention personally identifiable information (PII) is one the most expensive types of data to lose in a breach at approximately $150 per record. The U.S. is one of few countries without federal data privacy legislation like the EU’s GDPR, although several states have laws on the books (CPRA) or are in the process of creating legislation for it. CPO’s are left straining to keep consumers’ trust while staying abreast of new regulations. Will 2021 be the year we see comprehensive federal privacy legislation?
For more information on upcoming, free virtual discussions and to access on-demand webinars from The Inevitable please visit here.