This interview I did with the chief executive of RSA Security Art Coviello has just been posted on SC Magazine:
SC was granted an exclusive interview with Art Coviello, RSA president and executive vice president of EMC. He spoke to Andrew Donoghue on whether organisations should be compelled to disclose data breaches and whether he expects to see general levels of IT related crime increase during the tough economic times ahead.
SC: You are a bigger supporter of the idea of data breach notification regulations but some people – such as Microsoft UK’s chief security advisor and former FBI agent Ed Gibson – have questioned whether they are really a good idea?
Consumers have every right to know that there personally identifiable information has been compromised. If that personally identifiable information has been breached, you need to go public and explain that. Data breach regulations engender the following kinds of behaviour: ‘Wow, I could be embarrassed if this happens. Wow, I could be subject to subject to liabilities if this happens. Wow, I could suffer significant loss of reputation if this happens. Therefore I need to take appropriate action to make sure this doesn’t happen in the first place’. There is no technology that has been purchased just an awareness on the part of the company that they need to do something, they need to do the right thing.
You can find the full interview here