Security risk has in the past few years gained attention by organizations around the world regardless of size. Some, obviously, give it more importance than others, but all recognize that addressing security should be part of their risk strategy.
Many IT organizations see outsourcing as a viable solution to the problem of declining skills in their mainframe team. The outsourcer will take the responsibility of managing, maintaining, and upgrading the mainframe. On paper, it’s the “perfect solution!”
GDPR is EU law as of May 25, 2018 and there are potentially very large fines for organizations who suffer a data breach. GDPR applies to all organizations who process personal data for EU citizens, regardless of which country the organization operates in. Yes, that means American businesses, too.