Technology

As International Data Protection Day is observed on January 28, cybersecurity experts emphasize that data protection and privacy continue to be crucial concerns in an era of rapid technological advancements. Despite evolving regulations and cutting-edge security measures, the human factor remains a significant vulnerability in organizational data security.

According to Proofpoint’s inaugural Data Loss Landscape Report, 85% of global organizations experienced data loss in the past year, with 90% facing negative consequences such as financial losses and reputational damage. Notably, just 1% of users accounted for 88% of data loss alerts, underscoring the impact of employee negligence.

In the UAE, the rise of Generative AI (GenAI) has intensified the focus on data protection. Recent trends indicate a surge in investment in Data Loss Prevention (DLP) technology, with 51% of Chief Information Security Officers (CISOs) in the country implementing DLP solutions in 2024, up from 45% in the previous year. Additionally, 55% of CISOs are prioritizing employee data security training, an increase from 41% in 2023, as AI-powered tools such as ChatGPT, Grammarly, and Google Gemini become more prevalent in professional environments.

Emile Abou Saleh, Vice President for Northern Europe, the Middle East, Turkey, and Africa at Proofpoint, warns of the risks posed by AI in data security. He highlights that while AI presents significant opportunities, it also exposes organizations to potential data loss. Proofpoint’s 2024 Voice of the CISO Report found that 49% of CISOs in the UAE consider GenAI tools a major organizational risk, emphasizing the need for stringent data protection strategies.

“Data loss doesn’t happen on its own; it is driven by human actions. Whether due to carelessness, compromised accounts, or malicious intent, employees remain the primary cause of data breaches. In the UAE, 94% of organizations reported a loss of sensitive data over the past year, with 71% of CISOs attributing incidents to employee actions such as misdirecting emails, clicking phishing links, installing unauthorized software, or sending sensitive information to personal accounts,” Abou Saleh explained.

To address these risks, cybersecurity experts advocate for a human-centric approach to data security. This strategy integrates data classification, user intent analysis, and threat assessment across various communication channels, including email, cloud, web, and GenAI tools. Personalized interventions and targeted employee training programs are also being implemented to foster a culture of data security awareness, ensuring that individuals understand their role in protecting sensitive information.

• Tags
• #Business
• #Magazine
• #Lifestyle