FPT IS and IBM Vietnam share solutions for customer data security

The increasingly competitive technology race in the digital transformation era has caused businesses to face growing risks from cyberattacks on user data, which are rising sharply in both scope and intensity. Responding to this problem, on June 13, FPT IS coordinated with IBM Vietnam to organize the workshop “Proactively Protecting Customer Data with IBM Solutions”. The workshop aimed to share problem-solving approaches that align with current trends.

At the workshop, speakers provided in-depth analysis of the current cybersecurity situation and how companies can apply technology to proactively and effectively protect customer information.  This created an opportunity to improve enterprises’ understanding of advanced security strategies and how to proactively respond to cybersecurity threats.

Speaking at the event, Ms. Dang Vu Viet Anh, Business Director of the Enterprise Sector at FPT IS, stated that FPT IS has provided its customers with various solutions and products for data security.  “Hopefully, through the workshop, companies can draw lessons from shared experiences and work out solutions to protect themselves from cybersecurity threats”, said Ms. Viet Anh.

Automated identity and access management is an essential part of customer data protection and a key factor in the sustainable development of businesses.  The presentation “Automated Identity and Access Management to Meet Regulatory Compliance” by Mr. Nguyen Khanh Luong, Advisory Security Technical Specialist at IBM Vietnam, highlighted companies’ compliance with customer identity protection today. According to Mr. Luong, as enterprises are undergoing dramatic digital transformation, there will be more access from diverse sources to their organizational resources. This poses new challenges, especially in dealing with ransomware attacks.  To build and strengthen a security system, businesses need to apply the principle of least privilege and verify users correctly.

In the past year, the Vietnamese Government issued Decree No. 13/2023/ND-CP on personal data protection (“Decree 13”), effective from July 1, 2023.  The Decree regulates the protection of personal data and the responsibilities of relevant agencies, organizations, and individuals in this regard.  It is not only a comprehensive legal framework on privacy but also sets technical and policy requirements for businesses that process and control the data of Vietnamese citizens.  Small and medium-size enterprises, in particular, face difficulty in developing technical plans and prioritizing financial budgets for information security.

Understanding the concerns of businesses, Mr. Vo Hoang Linh, Advisory Data & AI Technical Specialist at IBM Vietnam, shared his perspective on personal data protection at this workshop. He emphasized that personal data protection is not only a legal requirement but also an important factor in building customer trust and ensuring the sustainable development of businesses in the digital era. To adhere to the Decree, companies need to apply advanced solutions to standardize processes in their business activities from the very start.

Ransomware prevention is extremely important as this type of malware can encrypt and take over businesses’ data.  The malware not only significantly impacts the IT infrastructure of enterprises but also causes heavy financial losses, forcing businesses to pay large sums to hackers. A ransomware attack can also destroy a business’s reputation, causing it to lose its customers’ and partners’ trust since their data is leaked or lost.  Therefore, prevention against ransomware is a key element in a business’s information security strategy, protecting its digital assets and ensuring its business continuity.

At the event, Mr. Nguyen Tuan Anh, Head of Security Consulting Team at FPT IS, recommended the need to constantly update software, manage and monitor personnel and machinery to prevent possible software errors. Additionally, enterprises should frequently evaluate and analyze their systems for vulnerability assessment. Companies are required to develop a plan to localize and isolate devices from the system as soon as signs of an attack are detected. There are currently various advanced cybersecurity monitoring systems which apply AI technology to automatically detect and prevent threats available on the market. With the motto “record, detect, investigate, and respond”, FPT IS has developed the FPT EagleEye solution to serve businesses’ cybersecurity strategies.

A ransomware attack costs businesses recovery time, which will seriously affect their production and customer services. Recovering data and systems after an attack is extremely expensive, inclusive of ransom and system restoration expenses. To tackle this issue, Mr. Nguyen Van Hai introduced data storage and recovery solutions, including IBM Storage For Data Resilience with the ability to withstand and quickly recover from cyberattacks.  Mr. Hai emphasized that the average time to detect and recover from an attack is about three weeks, which causes a significant amount of damage to companies and hinders their business operations.  IBM’s solution limits the data recovery process to just a few hours or even only 30 minutes, enabling enterprises’ continuous operations without long interruption after an attack.

Currently, investment in security systems is a must for companies undergoing digital transformation to keep customer data safe and maintain their trust in companies’ brands.  Experiences and security solutions shared by IBM Vietnam’s and FPT IS’s experts raised businesses’ awareness about how to proactively protect their customer data.  Through the event, FPT IS hopes that enterprises can establish a strategy and orientation to develop an optimized and effective network security system to ensure maximum information security.