Commercial Opportunities To Be Found In Security Problems

Uploaded on 2016-01-20 in NEWS-Cybersecurity News, GOVERNMENT-Law Enforcement, FREE TO VIEW, BUSINESS-Services-Consulting

YouTube: Malcolm Marshal KPMG 

Malcolm Marshall, KPMG's global lead on information protection and business resilience, told the Economist CIO Forum in London yesterday that, “there are opportunities in a high risk world, not just to protect revenues but to create value”.

He said that information security issues are taking on a higher profile in the boardroom of many companies, and according to a study last year by the Department for Business, Innovation and Skills, the boards of 70 percent of companies in the FTSE 250 believed cyber-threats will get worse. This is giving CISOs/CIOs more influence in the boardroom, and can help them make the case for investments in cyber-security.

But they can also use the opportunity to extend their influence by identifying how improvements in the area can increase profitability. This includes identifying how better security can provide savings in operations, especially if it involves securely moving more applications to cloud systems.

In addition, raising the profile of data security with customers can be used as a selling point as it convinces them the company takes it seriously. This can be taken a step further if it involves providing more transparency over how their personal data is used, and could provide more scope for data sharing with other parties to develop new differentiated services.

The opportunities are likely to come from security and commercial teams working closely together to identify where cyber-threats are most likely to affect revenues and concentrate on finding solutions. “I believe that if you have very strong security teams, combining technology and business, and you're intellectually strong you have the opportunity to save money and create revenue,” Marshall said.

In a panel discussion the argument was taken up by Gary Cheetham, chief information security and data protection officer for NFU Mutual, which offers financial services to farmers. He cited the way credit card providers conform to the PCI Data Security Standard to secure customer information and highlight this in their marketing literature.

Marshall acknowledged to SCMagazineUK.com, however, that there are major challenges involved, and that the timescale will depend on the conditions in specific industries. He suggested it will take at least five years for many companies to identify and begin to exploit the revenue opportunities, but said that some manufacturers of medical devices are already making progress, seeing the commercial potential in convincing customers that they can keep patient data secure.

There will also be massive opportunities in using data via the Internet of things if companies can convince people it will be kept secure, he said. “If you can solve the big problems around security you can unleash vast amounts of valuable data,” he concluded.

SC Magazine: http://bit.ly/1NfDurI

« Fighting Cybercrime Can Be Turned Into A Commercial Opportunity
2016 Cyber Threat - Use To Advantage »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

ANS Group

ANS Group

ANS are a strong team of straight-talking tech and business experts. Our mission is to make digital transformation accessible to all.

Magnet Forensics

Magnet Forensics

Magnet Forensics' family of digital forensics products are used globally by thousands of law enforcement, military, government and corporate customers.

IntaForensics

IntaForensics

IntaForensics offer a full range of digital investigation services and are able to adapt to the individual needs of solicitors, private clients, Law Enforcement Agencies and commercial businesses.

HyTrust

HyTrust

HyTrust specialises in security, compliance and control software for virtualization and cloud environments.

Silicom Denmark

Silicom Denmark

Silicom Denmark is a premier developer and supplier of FPGA-based interface cards for cyber-security, telecommss, financial trading and other sectors.

Phosphorous Cybersecurity

Phosphorous Cybersecurity

Phosphorus has fully automated remediation of the two biggest IoT vulnerabilities, out of date firmware and default credentials.

IntelliGenesis

IntelliGenesis

IntelliGenesis provide comprehensive cyber, data science, analysis, and software development services that provide tailored, secure solutions for your critical data and intelligence needs.

Tabidus Technology

Tabidus Technology

Tabidus Technology is a cybersecurity association that unites and provides the global protection options against cyber threats.

Udacity

Udacity

Udacity's mission is to train the world’s workforce in the careers of the future. Our programs range from beginner to expert levels and deliver the hands-on skills for real-world expertise.

du

du

du is a telecommunications service provider providing UAE businesses with a vast range of ICT and managed services.

Red Goat Cyber Security

Red Goat Cyber Security

Red Goat Cyber Security have created excellent, informative and interactive Social Engineering Awareness training which is suitable for all levels of staff.

Stryve

Stryve

Stryve is a leading carbon-neutral provider of specialist cloud and cybersecurity services in Europe.

Apura Cybersecurity Intelligence

Apura Cybersecurity Intelligence

Apura is a Brazilian company that develops advanced products and provides specialized services in information security and cyber defense.

Blockfence

Blockfence

Blockfence are a seasoned crew versed in enterprise-grade cybersecurity and crypto, on a mission to collaboratively shape the future of Web3 security.

RADICL

RADICL

RADICL's mission is to give SMBs that serve America's Defense Industrial Base (DIB) access to strong, enterprise-grade cyber security protection.

Triskele Labs

Triskele Labs

Triskele Labs deliver services including Penetration Testing, Compliance and Risk Management through to 24*7*365 Security Operations and outsourced Cybersecurity Managers.