01 Laboratory Exercise 1 - ARG, Lab Reports of Software Engineering

"Data Security Vs Data Privacy: An Imperative Distinction to Protect Data” by StealthLabs

Typology: Lab Reports

2020/2021

Uploaded on 03/20/2022

axkxsxa
axkxsxa 🇵🇭

3 documents

1 / 3

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
IT2028
01 Laboratory Exercise 1
*Property of STI
Page 1 of 3
Laboratory Exercise
Data Security VS Data Privacy
Objective:
At the end of the exercise, the students should be able to:
Compare data security and data privacy.
Materials:
Internet connection
MS Office
Procedures:
1.
Read the blog post entitled “Data Security Vs Data Privacy: An Imperative Distinction to Protect
Data” by StealthLabs below.
In the present digital world, organizations face a multitude of challenges related to the privacy
and security of employee, consumer, and client data. The sheer volumes of data that
enterprises handle and store is growing and drive a greater need for data protection practices.
In addition, computing environments have become highly complex, routinely spanning the
cloud, the enterprise data center, and numerous devices ranging from IoT sensors to remote
servers.
This complexity proliferates the attack surface, making it more challenging for organizations to
monitor and secure data. Thus, it has become crucial for organizations to incorporate data
security and data privacy policies into a sound data governance strategy to prevent data
breaches and achieve legal compliance. Unfortunately, many organizations believe that their
data security policy covers data privacy and vice versa. They often use data security and data
privacy interchangeably.
Data Security is commonly referred to as confidentiality, availability, and integrity of
information. It is all about the practices and procedures that focus on protecting personal
information from unauthorized access, data breaches, cyberattacks, and accidental or
intentional data loss. Data security ensures that data is accurate and reliable and is available
for authorized users. A data security plan includes resilient data storage technologies,
encryption solutions, data erasure, data masking, physical and logical access controls, breach
response, and multi-factor authentication.
Whereas Data Privacy is concerned with the procedures and policies that govern the
collection, storage, sharing, and usage of Personally Identifiable Information (PII) and
proprietary corporate information. It refers to the rules and regulations that ensure personal or
private information is being controlled on par with the preferences of the concerned
individual(s).
The best way to understand the distinction between data security and data privacy is to
consider the mechanisms used in both cases. An organization may have effective and robust
data security, yet the procedure or process by which information was collected and handled
might violate the privacy policy. For instance, an organization might ensure data security by
encrypting, masking, and properly accessing the data. But if it gathers that information
pf3

Partial preview of the text

Download 01 Laboratory Exercise 1 - ARG and more Lab Reports Software Engineering in PDF only on Docsity!

01 Laboratory Exercise 1 _Property of STI_*

Laboratory Exercise

Data Security VS Data Privacy

Objective:

At the end of the exercise, the students should be able to:  Compare data security and data privacy.

Materials:

 Internet connection  MS Office

Procedures:

  1. Read the blog post entitled “Data Security Vs Data Privacy: An Imperative Distinction to Protect Data” by StealthLabs below. In the present digital world, organizations face a multitude of challenges related to the privacy and security of employee, consumer, and client data. The sheer volumes of data that enterprises handle and store is growing and drive a greater need for data protection practices. In addition, computing environments have become highly complex, routinely spanning the cloud, the enterprise data center, and numerous devices ranging from IoT sensors to remote servers. This complexity proliferates the attack surface, making it more challenging for organizations to monitor and secure data. Thus, it has become crucial for organizations to incorporate data security and data privacy policies into a sound data governance strategy to prevent data breaches and achieve legal compliance. Unfortunately, many organizations believe that their data security policy covers data privacy and vice versa. They often use data security and data privacy interchangeably. Data Security is commonly referred to as confidentiality, availability, and integrity of information. It is all about the practices and procedures that focus on protecting personal information from unauthorized access, data breaches, cyberattacks, and accidental or intentional data loss. Data security ensures that data is accurate and reliable and is available for authorized users. A data security plan includes resilient data storage technologies, encryption solutions, data erasure, data masking, physical and logical access controls, breach response, and multi-factor authentication. Whereas Data Privacy is concerned with the procedures and policies that govern the collection, storage, sharing, and usage of Personally Identifiable Information (PII) and proprietary corporate information. It refers to the rules and regulations that ensure personal or private information is being controlled on par with the preferences of the concerned individual(s). The best way to understand the distinction between data security and data privacy is to consider the mechanisms used in both cases. An organization may have effective and robust data security, yet the procedure or process by which information was collected and handled might violate the privacy policy. For instance, an organization might ensure data security by encrypting, masking, and properly accessing the data. But if it gathers that information

01 Laboratory Exercise 1 _Property of STI_* improperly, for instance, without any proper consent from the concerned individual, the organization has violated data privacy requirements even though data security remains unbreeched. Therefore, organizations must understand that data security can be achieved without data privacy. However, data privacy cannot be achieved without data security.

  1. Answer the following questions: a. What is the article all about? The article is all about the differences between Data Security and Data Privacy. In this article, the differences between the two were discussed to avoid and have a better improvement in preventing data breaching as well as data loss in companies. Some problems and challenges were also discussed in the article and how did organizations cope to prevent it from spreading. Furthermore, the importance of knowing the difference between Data Security and Data Privacy was also discussed in the article. b. Why do you think it is important to know the difference between data security and data privacy based on the article? Data breaches are extremely problematic not only for the afflicted organization but also for its customers. In any case, a data breach can be costly to repair and might harm a company’s reputation. And now, with all the legalities in place to protect consumers’ privacy and data, it is vital to understand the ramifications of failing to comprehend and address Data Security and Data Privacy. It is the company’s responsibility to keep the data secure, also protecting employees’, consumers’, partners’ data safe from any threats. Knowing and understanding the differences between the two issues will help the company to identify and discuss various problems related to both. For further understanding, data privacy concerns the personal data of individuals, whereas data security is concerned with how a corporation protects that data from unauthorized access or corruption. Therefore, the success of protecting data is in the hands of understanding and knowing the difference between data security and data privacy. Hence, if there is a lack of understanding, the goal of protecting data will only result in failure, giving the predator a chance to access and lost all the data, and will also damage the company’s reputations along with severe financial implications. c. Do you agree with the article? Why or why not? Reading the article made me understand the difference between data security and data privacy, and I do agree with the article because some companies do not usually know the differences between the two in providing good security in data which causes them to encounter data breaching and data loss. Lastly, the way how the article discussed the differences can teach some companies to research and check thoroughly data security they have provided in protecting the data collected from consumers, partners, employees, and other entities involved in the collection of data.