In the past five years, approximately 500 million records containing personal identifying information of United States residents stored in government and corporate databases was either lost or stolen. You are required by law to respond. If you miss the deadline for notification set by state or federal governments, you are breaking the law and subjecting your organization to very stiff penalties.
Is your organization prepared to respond when a data breach occurs? Is your organization faced with the challenges of implementing security strategies that reduce the likelihood of a data breach?
Watch a re-broadcast of InfoQuest's "Navigating the Challenges of a Data Breach"
Overview
In November, 2006, over 11,000 Pennsylvania drivers were put at risk of identity theft after thieves broke into the Wilkes-Barre Drivers License Center and made off with computers containing their personal information. The stolen information included names, addresses, driver's license numbers, and in the case of 5,348 customers, complete Social Security numbers.
In September, 2007, over 370,000 records with medical aid numbers and 2000 records with social security information were reported lost when two computers were stolen from a Department of Public Welfare office in Harrisburg.
Process, polices and technologies were put in place in the Commonwealth that dramatically changed the security eco-system. To note, Pennsylvania dropped its total volume of exposed records to just over 200 records in 2008, only two in 2009, and so far, in 2010, the state has had no sensitive records compromised
In this talk, former Pennsylvania CISO Bob Maley, the architect of the Commonwealth’s security strategy, will touch upon everything from the problems that responding to a breach cause to the unique challenge of creating a new security strategy, evolving it over time, and how the process can positively affect the bottom line.
Participants will learn how to strategically plan for breach response and if one occurs, how to successfully navigate the challenge.
Response
When data is breached, the law requires you to respond. Knowing the requirements is the key to good planning, having the right people in place is the key to good execution and effectively managing a data breach incident is the key to brand protection and good public relations.
In this session, Karen Kight and Vinny Sakore will provide a data breach scenario and walk the audience through the necessary steps to respond to the data breach. The team from Immersion will be leveraging their real life experience in handling data breaches (including large data breaches in excess of several million records) to provide the audience critical information on how to successfully manage and handle a data breach incident.
About Immersion, Ltd
Immersion, Ltd. (“Immersion”) (www.immersionltd.com) is a wholly-owned subsidiary of NPC, Inc. (“NPC”) (www.npcweb.com) and is based in State College, PA in Penn State’s Innovation Park. Founded in 1954, NPC is a privately-owned printing services company (approximately 500 employees) located in Claysburg and Roaring Spring, PA. NPC is a top-ranked provider of printing and mailing services to the federal government (ranked in the top 3 print vendors to the Government Printing Office for the past 10+ years, including the #1 ranking in 2009). Much of the work performed for the federal government out of NPC’s 200,000 square foot manufacturing facility involves confidential personally identifiable information of many federal government agencies.
InfoLaunch® (www.useinfolaunch.com) is a registered trademark of Immersion. Immersion helps organizations prepare for and launch professional, timely data breach response communications, as required by state and federal law.
Immersion provides no legal services as part of the InfoLaunch® Data Breach Notification Service.