Thu, Apr 2, 2020

Mathew Dunn Discusses the Impact of New York's SHIELD Act on Nationwide Security Practices

The Stop Hacks and Improve Electronic Data Security Act (SHIELD Act) could significantly change security practices across the United States through the implementation of a key legislation. This legislation will require companies of all sizes to offer a more robust and secure transmission of not only New York’s private data, but of all consumer sensitive data. 

Mathew Dunn, Associate Managing Director in the Cyber Risk practice of Kroll, a division of Duff & Phelps, was quoted in a CSO online article saying “The SHIELD Act is the next in line with a variety of different state legislation that is geared towards breach notification as well as data privacy and protecting the citizens of States." He continued to discuss that a landmark requirement of the SHIELD Act is to ensure that any entity collecting personal data on New York residents must have a designated employee to oversee cyber security operations. He believes that this new amendment will push companies, and even individuals that collect personal data, to look hard at their current data security practices and make necessary changes.

Read the full article here.




Cyber and Data Resilience

Incident response, digital forensics, breach notification, security strategy, managed security services, discovery solutions, security transformation.

Cyber Risk Assessments

Kroll's cyber risk assessments deliver actionable recommendations to improve security, using industry best practices & the best technology available.

Data Protection Officer (DPO) Consultancy Services

Kroll's data privacy team provide DPO consultancy services to help you become and stay compliant with regulatory mandates.


Virtual CISO (vCISO) Advisory Services

Kroll’s Virtual CISO (vCISO) services help executives, security and technology teams safeguard information assets while supporting business operations with augmented cyber expertise to reduce business risk, signal commitment to data security and enhance overall security posture.