Making Data Breach Prevention a Matter of Policy in Corporate Governance

A data breach is an incident in which sensitive, protected or confidential data has potentially been viewed, stolen or used by an individual unauthorized to do so. The most common concept of a data breach is an attacker hacking into a corporate network to steal sensitive data. It seems like every week there is another report of a data breach at a healthcare or education institution or in an organization. Whether the culprit is student downloading sensitive classmate information from a school’s network or a random burglar who steals back-up tapes containing the information of millions of patients, it’s safe to say the potential for significant financial and personal difficulties is very real. School and university networks, and to a somewhat lesser extent those at hospitals, are particularly vulnerable to breaches compared to other types of businesses. Campus networks are at greater risk because they must be open, carry a lot of data, have many access points and support many portable devices, such as laptops, cell phones and PDA’s. In light of the disturbing increase in these types of incidents then, it would behoove all campuses to be vigilant yet realistic regarding their data breach prevention policies, personnel and solutions. Organizations are challenged with securing their data and maintaining regulatory compliance while controlling cost, complexity and risk. In this paper, we discuss breach prevention techniques and policies that can help ensure the customers don't make headlines for the wrong reasons. How to prevent a customer data & what to do when he fails, the information security policies. The emerging technologies to prevent data breaching. Keeping in view about the problems discussed above, this paper suggests to make data prevention techniques as a matter of policy in “Corporate Governance”