VigiTrust: Security and Data Compliance Solutions for the Modern Industry

A constant stream of high-profile attacks by organized crime and hacktivists against both commercial and government entities has raised awareness and created a heightened sense of urgency to harmonize data practices. Furthermore, the EU just passed the General Data Protection Regulation (GDPR)—a new European wide data protection regulation that will impact every entity that stores, processes or transmits personal data about EU data subjects, whether this entity is based in the EU or not and imposing fines of up to 4 percent of global (not EU) turnover, as well as mandating data breach notification for all businesses. Independent research has also highlighted that up to 90 percent of non-production data currently sits unmasked within organizations, posing a significant security and compliance risk. “With the GDPR coming into effect it’s becoming crucial for any organization to have an efficient, fully documented and implemented data classification and protection process in place,” says Mathieu Gorge, CEO, VigiTrust. Gorge—an established authority on IT security, risk management, information governance and compliance with more than 15 years’ experience in Europe, Australia, and the U.S.—informs that the GDPR requirements mean that organizations should ensure that they have the relevant policies and procedures, technical solutions and staff awareness programs in place to not only comply, but also avoid data security breaches. Commenting on GDPR (General Data Protection Regulation), Gorge also advises that these firms must also establish a framework for accountability, embrace privacy; analyze on a legal basis the use of personal data—especially in cross border data transfers.

With its roots as a Cyber Security consultancy organization, VigiTrust has now migrated to being a market leading GRC software provider—specializing in cloud based PCI DSS (Payment Card Industry Data Security Standard) and data security compliance portals, provides education and awareness training, online security assessments and testing based on the VigiTrust Five Pillars of Security Framework. “VigiTrust’s core strength is to keep ahead of the legal, operational, technical security and compliance challenges, and present the legal and industry-led compliance and security frameworks to clients in a comprehensive and user-friendly manner,” asserts Gorge. Paraphrasing Gorge—an international speaker and trainer on security, compliance, and block-chain issues—the firm helps organizations to understand the process and language around these regulations and standards through Security Discovery Workshops (SDW) and GRC Solutions.