At Net-Ctrl we’ve been banging on about how to minimise the impact of a data breach but still not enough companies are investing sufficient funds in making their data safe. And it’s not rocket science, really it’s not. I’d like an honest answer now, it’s just between the two of us; How many of you out there believe that your firewall/IDP/IDS systems will 100% stop a breach. Umm, as I thought, no one.
The way to make breaches less important is to kill the data….. Encrypt it, make it illegible to all but those who have access rights to it. And people do that, they do encrypt it but they leave the keys on an insecure server. So put the keys in a safe place, a Hardware Security Module (HSM).