security and privacy compliance, Liaison surveyed 479 senior and ... requirements. are unsure which data ... there are c
2016 STATE OF INFORMATION SECURITY & PRIVACY COMPLIANCE Introduction
The onus of information security and privacy compliance has never been more burdensome. In recognition of the growing importance of information security and privacy compliance, Liaison surveyed 479 senior and C-level executives at medium- to large-sized organizations across the United States to discover how they perceive their regulatory obligations—and to examine ways to help organizations facing stringent security and privacy requirements improve their compliance postures.
3%
Despite the growing prevalence and financial impact of data breaches, our survey suggests that U.S. organizations may underestimate their compliance requirements.
47%
cite PCI DSS as applicable; a surprisingly small number considering this data security standard applies to all entities that store, process or transmit cardholder data
are unsure which data compliance standards apply to their organizations
1 in 4 respondents are unsure who is principally responsible for information security and privacy at their organizations:
CEO
30%
Unsure
25%
Chief Security/Risk/Compliance Officer
17%
Personal liability for non-compliance may also be underestimated.
85%
don't believe their job security is at risk even if there are compliance issues
Did you know? The U.S. Department of Health & Human Services alone has referred 584 HIPAA privacy violation cases to the 1 Department of Justice for criminal investigation
Organizations remain wary of the cloud's ability to deliver on information security and privacy.
49% 36%
Only 36% say they would consider using a third-party certified cloud platform to help achieve/maintain compliance
Reduce Compliance Burden with the Liaison ALLOY™ Platform
51%
believe their data is not secure in the cloud
believe their data is secure in the cloud
Our cloud-based integration platform reduces compliance burden and complexity by inherently providing stringent cross-industry compliance for all information it processes and stores, regardless of data type or industry. ALLOY's compliance domain far exceeds that of other integration solutions, providing ongoing compliance for today's prevalent regulatory frameworks including HIPAA, PCI DSS and SSAE 16 SOC2. ALLOY also provides data tokenization services, a recognized best practice in securing payment card information.
ABOUT LIAISON As a leader in cloud-based integration and data management solutions, Liaison helps businesses overcome today’s toughest data challenges while building a robust foundation from which to tackle tomorrow’s. From complex integration to data management to big data, our secure solutions break down data silos, reduce inefficiencies, and uncover actionable insights.
1 Health and Human Services, http://www.hhs.gov/hipaa/for-professionals/complianceenforcement/data/enforcement-highlights, September 30, 2016