Information Security and the world of publishing
Before I started out in recruitment, my publishing roots were in rights and licensing and my role was to ensure companies that re-used our content for commercial use was copyright compliant i.e. they paid for it.
Fast forward some years and I find myself speaking to candidates that work in information security (in fact, my first placement in recruitment was a senior information security role) and, although the two things are completely separate, there are some similarities.
The first being that in both verticals you’re protecting something, whether that be content or data and systems and the second is that you’re retaining the commercial value so that you (the owner) are the only one that capitalises on it.
That aside, and moving more on to the point, we’ve all seen what’s happened in recent years; corporations of all different sizes being hacked of commercial and private content, even recently a well-known search engine having had up to a billion of its users’ details accessed and even as far as the Russians tampering with the US presidential vote.
The financial services industry is all over information / cyber security and has been for some time now but then they have to be as they have to look after our money after all or, if failure to do so, face severe penalties.
But are publishers doing enough?
Yes they don’t have our personal money, but they do put substantial time and effort into creating and curating content (not alone the monetary value) that enrich our lives on so many levels and not to mention the data they have from us as consumers and all the systems and technology that support this content digitally.
The bigger players out there are scaling up their information security departments to protect what they own but is the industry as a whole keeping up? As many publishers move into a more ‘direct to consumer’ relationship with customers this will be even more crucial.
Additionally, on the 25th May 2018, the UK government will be applying the General Data Protection Regulation (GDPR) which will introduce a new legal framework surrounding the use of personal data with the consequences of misuse resulting in huge fines.
But rest assured, Atwood Tate can provide the most appropriate resource and help with the compliance burden, whether that be in a permanent or interim capacity.
So should you be looking to get ready for the upcoming GDPR or want to ensure your technology and content is secure, we can assist in areas such as:
- Data protection
- Audit and regulatory compliance (ISO27001, PCI-DSS etc.)
- Infrastructure security design
- 3rd party supplier assurance
- Programme and project assurance
- Controls and access management
- Threat management
- Vulnerability assessment
On that note, have a happy Christmas and look forward to speaking to you in the New Year.