NACD - National Association of Corporate Directors

Equifax Data Breach -- Here's What We Can Learn From It

The Hill (Sept. 11) columnist Summer Craze Fowler, who developed and now teaches the CERT Certificate in Cybersecurity Oversight offered through the National Association of Corporate Directors, says companies can learn from the data breach that recently sent Equifax spinning into turmoil. "First," she writes, "organizations must practice basic cyber hygiene, such as inventorying assets and the software running on them." Failure to do so resulted in JPMorgan Chase's 2014 data breach, where a neglected computer server was not updated with the latest software patches. A second lesson to be learned is that enterprises must take steps to avoid impact to assets in a disruptive event like a data breach. "They must protect assets by assuming bad things will happen," Fowler concluded, "and use methods to sustain those assets despite the disruption or breach."

Abstract News © 2017 INFORMATION, INC.