While there’s a lot chatter emanating from Washington regarding the need to improve cybersecurity it may very well turn out that laws being enacted at the state level are about to have the most immediate impact in the U.S.
Delaware has become the latest state to enact a law requiring businesses to be more careful in terms of how the secure data. The new law will require all companies doing business in Delaware to implement and maintain what is described as “reasonable security” to protect personal information. Delaware is one of 14 states that have imposed new or updated data security regulations. The most aggressive of those new cybersecurity laws has arguably been enacted in New York, which among other things require companies to appoint a chief information security officer (CISO) by the end of this month.