The concept of Digital Transformation, so hackneyed today, is sometimes difficult to define or limit, probably due to the breadth that this concept has. If we try to find a definition on Wikipedia, for example, we will see that it is defined as “the change associated with the application of digital technologies in all aspects of human society”. We can study the Digital Transformation from multiple angles and one of them is clearly that of data. Indeed, any process of Digital Transformation applied to any field will result in the generation of data in electronic format. In 2006 Clive R. Humby coined the term “data is the new oil”. Today few doubt the correctness of the concept and although there are qualifications such as those made later by Michael Palmer indicating that raw data (like oil) cannot be used and must be refined to add value, the truth is that in In today’s society, the relevance of this idea continues to grow. Virtually all current economic activity is supported, directly or indirectly, by the exchange, analysis, exploitation, purchase-sale or transfer of data. In this way, it seems clear that every Digital Transformation process is based on data, in its analysis and procedures for obtaining, optimizing, applying, … Currently almost all of the product fabric and the Public Administrations are at some point in a process Digital Transformation; sometimes without being really aware of it or having made adequate planning. Lack of planning is one of the most common mistakes when carrying out a Digital Transformation process. Without planning, errors, inefficiencies, management problems will occur, which will entail, among other undesirable effects, data security problems.
Every Digital Transformation process is based on data, its analysis and procedures for obtaining it… and cybersecurity
Indeed, data security is a strategic element in any procedure in this sense and must be taken into consideration with this level of importance during the planning phase. As we indicated earlier, the problem is that on many occasions there is no planning as such or it is not as rigorous as it should be and it does not include cybersecurity in general and data security in particular as key elements. Practically every day the discovery of a security breach in a large company or public administration comes to light, a data theft, a loss of information (by ransomware, for example) and in the case of small or medium-sized entities we don’t even know about it, but it happens anyway. In fact, we have normalized cybercrimes to such an extent that “classic” crimes in which equipment or even money are stolen through a “physical” robbery or robbery attract much more attention and get much more space in the press and television than when similar or greater damage is caused by a cyber attack. If when setting up a business such as a store or a warehouse, no one considers not establishing adequate physical security measures (locks, alarms, surveillance or anti-fire systems…); Why, when it comes to digitally transforming these businesses, is the need to protect their data not considered from the beginning? If we all agree that data is the new oil, the basis that sustains the economy in the digital age in which we find ourselves; Why then is it necessary to insist on the need to protect that information? How is it possible that every day we experience new ransomware infections in all kinds of entities? That information breaches occur that publish and sell confidential data of customers, users or citizens to the highest bidder? Probably the reason for all this is not having understood that any digital transformation process that has not been planned correctly can lead to disaster. And that proper planning requires including information and data security among its key, strategic and determining elements for the rest of the plan.
By Miguel López, Country Manager of Barracuda Iberia