IT Governance report suggests staff awareness is not top priority in preparing for the GDPR

IT Governance, the global cybersecurity experts.

ELY, CAMBRIDGESHIRE, UNITED KINGDOM, October 24, 2017 /EINPresswire.com/ -- The EU General Data Protection Regulation (GDPR) requires a ‘privacy-by-design’ approach to data security, but a recent study by leading GDPR-compliance provider IT Governance shows only 50% of organisations have allocated budget for staff awareness.

IT Governance’s report, Implementation challenges and milestones for early adopters of the GDPR, is based on responses from 250 information security and data protection professionals, and focuses on the issues faced by progressive organisations that have already started working towards achieving GDPR compliance.

The report found that the biggest challenge in preparing for the GDPR is implementing the technical and organisational measures needed for compliance. Although 50% of organisations state they have not allocated a budget for staff awareness of data protection responsibilities, just over half of those surveyed are planning to undertake GDPR staff awareness training in the future.

The GDPR requires organisations to identify measures to protect EU residents’ personal data by, for example, conducting a data protection impact assessment (DPIA) for risky processing operations and, for some, appointing a data protection officer (DPO).

Nearly 43% of respondents to the survey felt that compliance with the GDPR will rely on staff awareness and training – a surprisingly low figure given that a recent cyber security breaches survey found that 72% of reported breaches occur after a staff member receives a fraudulent email.

Alan Calder, founder and executive chairman of IT Governance, said: “Under the GDPR, organisations will need to be equipped to deal with incidents to avoid severe reputational and financial damage. Implementing a core staff training process is crucial in developing a cyber resilient workforce in line with the Regulation.”

IT Governance offers a comprehensive Security Awareness Programme to help organisations build and maintain a culture of data security. Tailored to each business based on its requirements, the programme provides a bespoke training platform that informs staff of the signs and risks of social engineering, reducing the scope for human error and improving organisational measures against cyber threats.

To find out more about IT Governance’s Security Awareness Programme, fill in the enquiry form to speak to a consultant, visit the website, email servicecentre@itgovernance.co.uk or call +44 (0) 845 070 1750.

-Ends-


NOTES TO EDITORS

IT Governance Ltd is the single-source provider of books, tools, training and consultancy for IT governance, risk management and compliance. It is a leading authority on data security and IT governance for business and the public sector. IT Governance is ‘non-geek’, approaching IT issues from a non-technology background and talking to management in its own language. Its customer base spans Europe, the Americas, the Middle East and Asia. More information is available at www.itgovernance.co.uk.


Mihaela Jucan
IT Governance Ltd
00448450701750
email us here


EIN Presswire does not exercise editorial control over third-party content provided, uploaded, published, or distributed by users of EIN Presswire. We are a distributor, not a publisher, of 3rd party content. Such content may contain the views, opinions, statements, offers, and other material of the respective users, suppliers, participants, or authors.