Cybersecurity Is A Job for CEOs, Not Just The IT Team

Uploaded on 2018-02-23 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

More data was lost or stolen in the first half of last year than in the whole of 2016, with the number of businesses that have been hit by a breach reaching an all-time high. Data breaches are no longer the exception, but the norm.

Hackers’ abilities to bypass digital defences are constantly improving, as are both the number and sophistication of these crippling attacks. However, regardless of the changing landscape, the enormity of the risk to businesses due to poor cyber security management has yet to properly hit home.

In the last 12 months alone, the picture has worsened, with a list of big brands falling foul to the devastating effects of weak digital security practices.

Second-hand electronic goods retailer CeX, telecommunications conglomerate Verizon, and consumer credit reporting agency Equifax are but a handful of names that comprise an unenviable group of businesses. What’s more, so severe was the fallout from the Equifax breach that the company’s chairman and chief executive resigned shortly afterwards.

With cyber-attacks now posing real dangers to a company’s bottom line, corporate reputation, customer retention, and also employee confidence, threats emanating from technology can no longer be relegated to the remit of the IT department. They must be dealt with first-hand in the boardroom.

Rather worryingly, the Cyber Governance Health Check (an annual survey conducted by the UK government) revealed that, of the 105 businesses questioned from the FTSE 350, one in 10 have no plan in place to cope with hacking, despite over half of respondents also citing it as one of the primary threats to their business.

In an effort to streamline operations and boost revenue in certain areas, advancements in technologies like the Internet of Things, artificial intelligence, big data and most recently cryptocurrency have started to force the hands of businesses.
As a result, our own research has revealed that nine in 10 organisations around the world are now storing more sensitive data in these emerging technology environments than ever before.

This in turn means that the exploitable opportunities for hackers and the scale of companies’ digital vulnerabilities are at their peak.

If companies are going to use these new technologies, they need to build in data protection right from the start. Effective data security means having the correct digital deterrents in place, with some constantly running through automated processes. This will reduce the level of complexity for businesses, while, staff can continue their day-to-day roles, knowing that their organisation is being protected around the clock.

Instead of viewing cyber security as daunting or complex, or as an added extra, companies should instead embrace the range of options available to them and ensure it remains a key part of their core business model, and a factor in any new technological developments.

Interestingly, we also discovered that, with impending EU-wide regulations such as the General Data Protection Regulation and the Second Payment Services Directive looming large on the horizon, avoidance of financial penalties has now become the number one motivator for increased spending on security technology.

But protecting consumer data must be an ethical imperative, not merely a financial concern. Educating and upskilling executives is nothing short of crucial in the digital age. And delaying the implementation of a robust data protection strategy simply cannot be overlooked when the stakes are so high.

With the endless list of competing priorities facing organisations, from the challenges of geopolitical and economic upheavals, to risk management, talent retention, and innovation, it can be daunting to assess just how harrowing the effects of a data breach could be. However, getting cyber security right means taking no half measures and cutting no corners.
Adapting to the new digital climate won’t be easy. Nor will tussling with the unprecedented level of technological change.
In order to progress successfully, business leaders must place renewed emphasis on long-term thinking, significant investment in the right areas, and more unified international cooperation to combat the harsh realities of today’s data threat landscape.

To protect companies’ most valued digital assets and keep up with the pace of technological change, greater investment in a highly-skilled, well-trained workforce will be nothing short of essential. Those business leaders who choose to give cyber security nothing more than a passing thought do so at their own peril.

City AM

You Might Also Read:

The GDPR Deadline Is Near & Business Is Not Ready:

Data Breaches Attack All Parts Of A Business:

Cyber Security Checklist For Management (£):

 

 

« Police Prepare for Cyber Attacks
FBI, CIA & NSA Officials Agree: Stay Away From Huawei Phones »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Riverbed Technology

Riverbed Technology

The Riverbed Network and Application Performance Platform enables organizations to visualize, optimize, accelerate and remediate the performance of any network for any application.

Site24x7

Site24x7

Site24x7 is an AI-powered observability platform for DevOps and IT operations.

Micro Focus

Micro Focus

Micro Focus is one of the world’s largest enterprise software providers. We deliver trusted and proven mission-critical software that keeps the digital world running.

Detectify

Detectify

Detectify is a web security service that simulates automated hacker attacks on your website, detecting critical security issues before real hackers do.

National Cyber Security Centre (NCSC) - Ireland

National Cyber Security Centre (NCSC) - Ireland

The National Cyber Security Centre (NCSC) is the operational side of the Department of Communications in regard to network and information security in the Republic of Ireland.

OneTrust

OneTrust

OneTrust is the largest and most widely used technology platform to operationalize privacy, security and third-party risk management.

Aptiv

Aptiv

Aptiv is a global technology company that develops safer, greener and more connected solutions enabling the future of mobility.

Perimeter 81

Perimeter 81

Perimeter 81 is a Zero Trust Network as a Service designed to simplify secure network, cloud and application access for the modern and distributed workforce.

TalaTek

TalaTek

TalaTek is a full-service risk management firm providing expert services in risk management, cybersecurity, and compliance.

Internetwork Defense (IND)

Internetwork Defense (IND)

Internetwork Defense is a premier provider of Information Security Training and Business Consulting Services in the Mid-Atlantic region.

Cyvatar

Cyvatar

Cyvatar is a technology-enabled cyber security as a service (CSaaS) provider delivering smarter managed security to help you achieve compliance and security faster and more efficiently.

European Center for CyberSecurity in Aviation (ECCSA)

European Center for CyberSecurity in Aviation (ECCSA)

ECCSA is a cooperative partnership within the aviation community to better understand emerging cybersecurity risks in aviation and provide collective support in dealing with cybersecurity incidents.

Crispmind

Crispmind

Crispmind creates innovative solutions to some of today’s most challenging technology problems.

Cyber and Fraud Centre – Scotland

Cyber and Fraud Centre – Scotland

The Cyber and Fraud Centre – Scotland exists to ensure Scottish organisations are as resilient as they can be against cyber and fraud crime.

CESAR

CESAR

CESAR is one of the premier R+D and innovation centers in Brazil and a designated Cybersecurity Competence Center.

Jitterbit

Jitterbit

Jitterbit integrates critical business processes and enables application development to deliver the experiences and insights needed by enterprises of all sizes to accelerate their digital journey.