Hi All,
Cloud Security Alliance continues to work diligently to determine how we can add maximum value to addressing privacy issues without being duplicative of other groups and efforts. A working thesis is that we can provide the most benefit by contextualizing privacy issues for cybersecurity professionals. We would like to consult with you about a CSA initiative in this light. It is intended to help bridge the gap between security pros and privacy pros.
Organizations are increasingly spending significant time on privacy compliance issues. In a single organization, privacy pros and security pros may be tasked with implementing the same requirements for the same product, within the same deadline. They are likely to work on that assignment from a different angle, and with different objectives. There may be occasional frustrations when their methods or priorities appear incompatible.
We have designed a "Privacy for Security Pros" dictionary to help technologists better understand the perspective and constraints of their privacy colleagues.
This Privacy for Security Pros Dictionary is intended to help illustrate the objectives underlying dense privacy laws, and communicate in a pragmatic manner the potential role of IT or security pros in helping their organization meet these compliance objectives.
This document is not a compliance tool, a guide or an exhaustive analysis of any specific data protection law or regulation. It is not intended to provide a checklist, a compilation of best practices, or other form of guidance for ensuring compliance with any privacy or data protection law.
Our goal in requesting your comments is to hear your reactions, understand whether this dictionary could be of use to our profession, and if not, collect your suggestions on whether different tool might be more useful to improve communications between technologists and their privacy colleagues.
- Please review our Privacy - Security Dictionary here
- Then, take our survey to provide your comments here
------------------------------
Jim Reavis CCSK
Cloud Security Alliance
Bellingham WA
------------------------------