Achieving Data Privacy Compliance in Postgres or Greenplum
Les McMonagle (CISSP, CISA, ITIL) – VP of Security Strategy, BlueTalon Inc.
Les has over twenty years’ experience in information security. He has held the position of Chief Information Security Officer (CISO) for a credit card company and ILC bank, founded a computer training and IT outsourcing company in Europe, directed the security and network technology practice for Cambridge Technology Partners across Europe and helped several security technology firms develop their initial product strategy. Les founded and managed Teradata’s Information Security, Data Privacy and Regulatory Compliance Center of Excellence, was Chief Security Strategist at Protegrity and is currently Vice President of Security Strategy at BlueTalon.
Les holds a BS in MIS, CISSP, CISA, ITIL and other relevant industry certifications.
This session will provide a deep dive into the difference between data protection and data access control, how they can work together in a layered approach to data security and when you need more of one versus the other. The information provided will be applicable to GDPR compliance, HIPAA, HITECH, Omnibus Rule compliance or the hosting and processing of any sensitive or regulated data including Personally Identifiable Information (PII), Protected Health Information (PHI), Intellectual Property (IP) and other Non-Public Information (NPI). Regulations including Gramm-Leach Bliley Act (GLBA), Children’s On-Line Privacy Protection Rule (COPPA) and other government or industry specific regulations also add data security controls requirements. Internationally Accepted Privacy Principles will be discussed and why compliance with these basic fundamental principles is the cornerstone of compliance with virtually all data privacy regulations.
Attendees will better understand what to do to ensure their Postgres or Greenplum environment is ready and capable of hosting and processing any sensitive or regulated data required in full compliance with applicable data privacy laws and regulations. The session will include a Q&A session to answer specific questions or discuss specific use cases of interest or relevance to the audience.
- 2018 April 20 10:50
- 50 min
- Liberty II-III
- PostgresConf US 2018
- Regulated Industry Summit