Articles By Brian Rutledge

Brian Rutledge

Principal Security Manager

Brian Rutledge is a Certified Information Systems Security Professional (CISSP) in the cybersecurity industry for more than 20 years. He’s currently the security and compliance engineer at Spanning driving all audit compliance initiatives and managing the company's overall security posture. Previously, Brian was a PCI DSS Qualified Security Assessor (QSA) for Trustwave Holdings working with small business, banking, and enterprise clients to help them become Payment Card Industry compliant. Brian has worked in the telecom industry for notable companies like Verizon and MCI maintaining the Windows server infrastructure and driving vulnerability management programs. Brian has also worked as a navigation electronics technician aboard a US Navy submarine.

GDPR 2.0 Comes to the United States

On June 28 2018, California Governor Jerry Brown signed into law AB 375, the California Consumer Privacy Act (CCPA) of 2018. The statute, seen as one of the toughest privacy laws in the United States, will require companies to tell California residents what information is being collected and how it’s used. You have 18 months to get ready.


READ MORE >


Prepare or Repair: Pointers for Both Sides of a Ransomware Attack

Ransomware attacks are increasing, getting more sophisticated and sparing no industry. In this blog we examine both sides of a ransomware attack — ways to prepare a solid defense (or offense) to prevent an attack and pointers to repair the damage if you do suffer an attack.


READ MORE >


Countdown to GDPR #10: A GDPR Compliance Checklist

We’ve made it all the way to number 10 in our blog series, and just in in time for Friday, May 25, 2018, the date the GDPR will become enforceable. But relax, we’re here to provide you with peace of mind in the last blog of our GDPR series with tips and pointers to keep you GDPR compliant — on May 25, and beyond.


READ MORE >


Countdown to GDPR #9: How is Spanning Preparing for GDPR?

In the last three blogs of our GDPR series, we examine the impact of the GDPR on your organization, Spanning and SaaS providers in general. In blog #9 in the series, we take a look at our journey to GDPR compliance and provide you with tips for your own organization.


READ MORE >


Countdown to GDPR #8: What is the GDPR Impact on SaaS Providers?

In our GDPR series to date we’ve analyzed the important directives and ways for you to be compliant with them. In our final three blogs, we examine the impact of GDPR on your organization, Spanning and SaaS providers in general. Read #8 for the impact of the GDPR on SaaS Providers.


READ MORE >


Countdown to GDPR #7: Data Protection Impact Assessment

We’re onto #7 in our 10-part GDPR blog series. In this blog post, we tackle Data Protection Impact Assessment (DPIA) and what it may mean for your organization. Read the entire GDPR series to get ready for 25 May 2018.


READ MORE >


Countdown to GDPR #6: Data Transfers

To prepare for the upcoming GDPR we’re doing a series of blogs about key regulations and ways to be compliant with them. GDPR is closing in, and we’re close at its heels having crossed the halfway mark on our GDPR Countdown. At #6 we examine the GDPR’s impact on Data Transfers.


READ MORE >


Countdown to GDPR #5: Data Security and Privacy Policies

To prepare for the upcoming GDPR we’re doing a series of blogs about key regulations and ways to be compliant with them. In part 5 in our 10-part series we take a look at the impact of GDPR on Data Security and Privacy Policies and what it may mean for your organization.


READ MORE >


The GDPR vs Australian Data Privacy Regulations

Data privacy and security have moved to the forefront of boardroom visibility in 2018. Constant focus on how we manage personally identifiable information (PII) and personal health information (PHI) is moving in a new direction. Not only are we concerned about what we’re storing and processing, but we now need to understand the “where, why, […]


READ MORE >


Countdown to GDPR #4: Impact on Customer Communication and Experience

To prepare for the upcoming GDPR we’re doing a series of blogs about key regulations and ways to be compliant with them.  In Part 1 we discussed the Right to Be Forgotten, in Part 2 we spoke about Privacy by Design and by Default and in Part 3 we understood why Designating Data a Protection Officer […]


READ MORE >