Conference on GDPR and Security research

The conference was held to present the results of a Research carried out by the Information Security & Privacy Observatory.

The new European General Data Protection Regulation (GDPR) has disrupted the digital market over the last year. The focus on the procedures and ways to collect and process clients’ data, as well as the election of technologies to be implemented to ensure security are an increasingly crucial issue in the process for the introduction of new digital innovation projects. Besides, the increasing threat deriving from increasingly more sophisticated attacks has drawn the attention of the market to technology solutions for data security, which are increasingly more popular.

The above themes were the subject of the conference held at Politecnico di Milano university and were discussed by Chief Information Security Officers (CISO), Chief Security Officers (CSO), Chief Information Officers (CIO) and Chief Risk Management officers, representatives of major Information Security companies and experts, discussing both technical and regulatory issues.

Renato Sesana, partner at Grant Thornton Financial Advisory Services, took part in the discussion concerning the roadmap for the implementation of the new GDPR.

Below are some questions which participants tried to give an answer to during the meeting:

• What is the value of Information Security Management for Italian businesses?
• What are the implications of the new General Data Protection Regulation (GDPR), prior to 25 May 2018?
• What are the most priority areas for businesses and those in which they will invest the most?
• What are the main governance models implemented by businesses and the new professional figures to defend security and data protection?
• What actions are businesses taking to face the threats and size the opportunities generated by new Cloud, Big Data, IoT, Mobile and Social technologies?
• How can cyber risk be managed and what is the situation of the cyber insurance market?

During the conference, the results of the 2017 Research carried out by the Information Security & Privacy Observatory were presented, promoted by the School of Management of Politecnico di Milano university.

The Research was aimed at:

• Understanding the impact of the General Data Protection Regulation (GDPR) on new professions
• Monitoring the implementation status of information security and privacy systems in Italian organizations
• Quantifying the information security market in Italy
• Investigating how new digital innovation trends such as Cloud, Big Data, Internet of Things and Mobile impact on the management of information security and privacy
• Identifying the main international trends within information security & privacy
• Analysing procedures for the management and transfer of Cyber risk
• Studying impacts on large companies and SMEs
• Identifying successful cases.