By Jay M. Dade
In 2016, U.S. private employers and government agencies reported more than 1,000 data security breaches, up 40 percent from 2015. Recent high profile examples include:
- 2014 theft of unencrypted laptops at Coca-Cola, which compromised sensitive data concerning 74,000 then-current and former employees;
- 2016 incident in which a Boeing employee sent personal data regarding 36,000 employees across a four-state area in a spreadsheet to his spouse; and
- 2017 breach that compromised data from 95,000 job applicants at McDonalds Canada.
Employers confronting the seemingly daunting task of protecting sensitive and private employee data may look to computer security expert Gene Spafford’s famous conclusion: “The only truly secure system is one that is powered off, cast in a block of concrete and sealed in a lead-lined room with armed guards.”
But, in the real world, employers must power on their computer systems absent a protective concrete barrier and armed guards. What steps must employers take when the security of employee data is breached or an unauthorized access and compromise has occurred? Let’s take a look.Read More