Is your organization emphasizing an approach of developing privacy and security within every aspect of your application architecture? Are you a software developer struggling to understand how to merge privacy and security into your code? Are you a systems integrator working to keep up with the latest regulatory, compliance and privacy needs and how to merge this into your customers? Or are you a corporate CISO/CIO wanting to understand how your organization should be developing the strongest Privacy and Security processes?
Today, we are pleased to announce publication of a paper entitled “Privacy and Security by Design: An Enterprise Architecture Approach,” written by Ann Cavoukian, Ph.D., Information & Privacy Commissioner, Ontario, Canada, and co-authored by Mark Dixon from Oracle.
In the foreword to the paper, Dr. Cavoukian wrote:
In an earlier paper with Oracle, we discussed the
convergence of paradigms between the approach to privacy I have long
championed called Privacy by Design, and a similar approach to security
called ‘Security by Design.’ The current and future challenges to
security and privacy oblige us to revisit this convergence and delve
deeper. As privacy and security professionals, we must come together and
develop a proactive approach to security – one that is indeed “by
design.” To this end, I am delighted to be partnering with Mark Dixon,
Enterprise Architect, Information Security, at Oracle Corporation, on
this joint paper.
This paper has two key objectives:
- Define a set of foundational “Security by Design” principles that
are modelled upon and support the 7 foundational principles of Privacy
- Illustrate an enterprise-level process for defining and governing
the strategic journey of Security by Design through an enterprise
To achieve these objectives, the paper includes the following major sections:
- Foundational Principles of Privacy by Design
- Foundational Principles of Security by Design
- The Enterprise Security Journey
This is a great opportunity to hear some of the best practices being recommended by both Oracle, and leading government agencies to understand how Privacy and Security should be factored in, across the board.
Click on the link, to get access to the Privacy by Design page which is hosting not only the whitepaper, but a great video with Ann Cavoukian, outlining some of what you will learn in this paper. We hope this paper will assist developers, integrators and enterprises to deliver stronger security and better privacy, for all of their stakeholders – a win/win proposition.