Announcements
Planned Site Maintenance
Due to scheduled maintenance, account creation for new Community users will be unavailable 11 a.m. Eastern October 23, 2020 – October 24, 2020. We apologize for any inconvenience.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Highlighted
Community Champion

New Privacy Law in New York

Just and FYI, a new blog post on the NY Shield Law was posted yesterday.  The article was put together by Paul Lanois, SSCP and Eric Tierling, CISSP.

 

https://blog.isc2.org/isc2_blog/2020/01/new-york-data-privacy-shield-act.html

 

Another set of laws, that affect just about everyone ;(

 

d

 

6 Replies
Highlighted
Community Champion

Re: New Privacy Law in New York

To me, it seems like most of these new laws are just to get companies to start following best practices and other things they should have been doing all along.

 

John-

 

Ps, thank for the post, had not seen it...

Highlighted
Community Champion

Re: New Privacy Law in New York


@JKWiniger wrote:

To me, it seems like most of these new laws are just to get companies to start following best practices and other things they should have been doing all along.

 

John-

 

Ps, thank for the post, had not seen it...


I have to agree with you.....maybe an eye opener for those that control the purse strings.  

 

d

 

Highlighted
Newcomer III

Re: New Privacy Law in New York

The SHIELD act eh? New York ran by Hydra?

Highlighted
Contributor III

Re: New Privacy Law in New York


@JKWiniger wrote:

To me, it seems like most of these new laws are just to get companies to start following best practices and other things they should have been doing all along.

 

John-

 

Ps, thank for the post, had not seen it...


Uh, sadly.

 

Being a consultant it seems a lot of company only do what they should be doing if its forced on them by either their clients or regulations.

 

And then you have the ones who instead of doing a risk analysis (more time & $$$) to determine what they should do, instead want to do the bare minimum as forced by the clients/regulations.

 

Its the compliance vs security mindset.

 

---
Michael Brown, CISSP, HCISPP, CISA, CISM, CGEIT, CRISC, GSLC, GSTRT, ISSA Fellow
Highlighted
Community Champion

Re: New Privacy Law in New York

I tried not to but I guess I have to return the joke...
Don't worry Fitz has it covered!
Community Champion

Re: New Privacy Law in New York

I have consulted for many years and it depends if they just have you come in to implement / fix something or if they have you come in to run things. I set the direction of how and where their IT was going and it allowed me to incorporate proper security right from the beginning.

John-