Momentum Episode 5 | Essential Steps for HR Firms to Safeguard Personal Data From Cyberattacks – Featuring Dr. Harsha E Thennarasu, A Cyber Crimes Researcher
As AI continues to advance, the risk of data breaches and cyber attacks is escalating, putting companies – especially recruitment firms with a constant influx of candidate data – at greater risk of cyber threats.
In this episode of the Momentum podcast, Dr. Harsha E Thennarasu, a cyber crimes researcher and founder of HKIT Security Solutions, and DPO for HirePro, shares practical solutions for companies, particularly HR firms, to protect sensitive candidate information and company data. He is a distinguished expert in Information & Cyber Security, holding a PhD in Information Security and numerous security certifications. With over 20 years of experience, he serves as a pan-India trainer for the Reserve Bank of India, providing specialised training in Information Security, Cyber Crimes, and Physical Security.
Dr. Harsha stresses the importance of implementing robust data encryption, regularly updating security protocols, and conducting frequent audits to safeguard against cyber threats. He also advises companies to invest in employee training programs that focus on data privacy best practices and implement stringent access controls to protect sensitive information from potential breaches.
Dr. Harsha also emphasises the importance of compliance with data protection regulations to mitigate risks and safeguard sensitive data. He provides valuable insights for companies to ensure the security of their data and protect candidate personal information in an increasingly digital world.
You can also tune in to the audio version on Spotify below
Frequently asked questions
Question: What is the importance of data protection in the recruitment industry?
Answer: Data protection is crucial in the recruitment industry as it involves handling sensitive personal data of candidates. Robust data privacy policies and measures can help protect this data and prevent breaches.
Question: Why is data protection important for companies offering SaaS models?
Answer: Data protection is important because SaaS models are more vulnerable to cyber threats and attacks.
Question: What are the consequences of data breaches in the recruitment industry?
Answer: Data breaches can result in penalties ranging from 10,000 rupees to 250 crores, as well as loss of trust and reputation.
Question: What is the role of technology in preventing data breaches?
Answer: Technology plays a significant role in preventing data breaches. Implementing technological controls, such as access permissions and encryption, can help protect data.
Question: What is the importance of employee education in preventing data breaches?
Answer: Employee education is crucial in preventing data breaches. Employees should be trained on how to handle personal data and the importance of data protection.
Question: What is the impact of data protection laws on the recruitment industry?
Answer: Data protection laws, such as the General Data Protection Regulation (GDPR) and the Digital Personal Data Protection (DPDP) bill in India, have a significant impact on the recruitment industry. These laws require companies to implement robust data privacy policies and measures to protect personal data.
Question: What are some measures that companies or HR firms can take to protect company data and candidates’ information?
Answer: Companies can protect data by implementing technological controls, educating or training employees, and having robust data privacy policies and measures in place.
Question: How can organisations protect their data from cyber threats?
Answer: Organisations can protect their data by implementing security measures such as encryption, access controls, and monitoring.
Question: What is the importance of having a comprehensive information security policy?
Answer: Having a comprehensive information security policy is crucial in preventing data breaches. This policy should cover aspects such as access control, encryption, and incident response.
Question: What is the origin of GDPR?
Answer: GDPR originated in Europe to protect personal data and address the challenges of data breaches.
Question: What is the difference between GDPR and DPDP?
Answer: GDPR is a European legislation, while DPDP is an Indian legislation that is customized to protect digital personal data in India.