When the EU General Data Protection Regulation (GDPR) comes into force in – it is estimated – 2017, 52% of global companies will face fines for non-compliance, according to research conducted by global analysts Ovum (Data privacy laws: Cutting the red tape).
The survey of 366 IT decision-makers also found that two-thirds of companies expect to have to change their “European business strategy” to accommodate the new legislation, with over 70% of respondents expecting to increase spending. “Of those who plan to update data privacy strategies in the next three years,” the report continues, “38% plan to hire subject matter experts”.
The message is clear: companies are underprepared and will be recruiting heavily in the next year. With cyber security salaries continuing to grow at well above the average as demand far outstrips supply, there’s never been a better time to take advantage.
An information security management system (ISMS), as set out in the international standard ISO 27001, provides a risk-based approach to information security that enables organisations of all sizes, sectors and locations to mitigate the risks they face with appropriate controls – and meet their data protection obligations under the current UK Data Protection Act and the forthcoming GDPR.
According to the latest ISO Survey, there was a 17.6% growth in the number of ISO 27001 certificates in the UK last year. As more and more organisations seek to implement best-practice information security practices based on the Standard, an ISO 27001 qualification is something that IT executives, compliance managers, and management systems professionals can no longer afford to be without. Book a place on one of IT Governance’s ISO 27001 training courses now to start 2016 with the best chance of increasing your earning potential.