Your network isn't really your network anymore. More specifically, the things you thought of as your network — the boxes with blinking lights, the antennae, the switches, the miles of Cat 5 cable — no longer represent the physical reality of your network in the way that they once did.
Over the past couple of weeks, we've talked a great deal about the General Data Protection Regulation (GDPR) that will take hold in the European Union next May. We've spoken about:
In general, more regulation is a good thing. Regulation is what's given us life-improving innovations like the 8-hour workday, and the weekend. It's given us child labor laws, fair wages, cleaner air and water, and healthier food. There's no denying that regulation is, in general, a good thing—but will the GDPR specifically improve our lives, or could it stifle digital innovation?
You are probably using a hybrid cloud. Even for the smallest companies, the litmus test is pretty simple: do you keep some data on a shared drive that's exclusive to your company, and other data on an online cloud storage platform like Dropbox? If so, then congratulations, you're a hybrid cloud user.
The General Data Protection Regulation (GDPR) is coming, and every commentator says that it represents a huge upheaval in the world of information privacy. They say that, but there have been other occasions where the European Union's Information Commissioner Office has put out some regulations that made barely a ripple. Worse, some proposals have been outright ludicrous, and had they been enacted the foundations of the Internet may have crumpled.
In our ongoing series on compliance and security, we've covered the history of information security compliance, compliance regimes in general, and how to prepare for a SOX audit. Now, let's move on to the catchily-named NIST 800-53. This security standard covers all federal organizations, except for those under the purview of the defense agencies, and all non-governmental agencies who wish to work with the U.S. government.