Commercial Opportunities To Be Found In Security Problems

YouTube: Malcolm Marshal KPMG 

Malcolm Marshall, KPMG's global lead on information protection and business resilience, told the Economist CIO Forum in London yesterday that, “there are opportunities in a high risk world, not just to protect revenues but to create value”.

He said that information security issues are taking on a higher profile in the boardroom of many companies, and according to a study last year by the Department for Business, Innovation and Skills, the boards of 70 percent of companies in the FTSE 250 believed cyber-threats will get worse. This is giving CISOs/CIOs more influence in the boardroom, and can help them make the case for investments in cyber-security.

But they can also use the opportunity to extend their influence by identifying how improvements in the area can increase profitability. This includes identifying how better security can provide savings in operations, especially if it involves securely moving more applications to cloud systems.

In addition, raising the profile of data security with customers can be used as a selling point as it convinces them the company takes it seriously. This can be taken a step further if it involves providing more transparency over how their personal data is used, and could provide more scope for data sharing with other parties to develop new differentiated services.

The opportunities are likely to come from security and commercial teams working closely together to identify where cyber-threats are most likely to affect revenues and concentrate on finding solutions. “I believe that if you have very strong security teams, combining technology and business, and you're intellectually strong you have the opportunity to save money and create revenue,” Marshall said.

In a panel discussion the argument was taken up by Gary Cheetham, chief information security and data protection officer for NFU Mutual, which offers financial services to farmers. He cited the way credit card providers conform to the PCI Data Security Standard to secure customer information and highlight this in their marketing literature.

Marshall acknowledged to SCMagazineUK.com, however, that there are major challenges involved, and that the timescale will depend on the conditions in specific industries. He suggested it will take at least five years for many companies to identify and begin to exploit the revenue opportunities, but said that some manufacturers of medical devices are already making progress, seeing the commercial potential in convincing customers that they can keep patient data secure.

There will also be massive opportunities in using data via the Internet of things if companies can convince people it will be kept secure, he said. “If you can solve the big problems around security you can unleash vast amounts of valuable data,” he concluded.

SC Magazine: http://bit.ly/1NfDurI

« Fighting Cybercrime Can Be Turned Into A Commercial Opportunity
2016 Cyber Threat - Use To Advantage »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Hyper Recruitment Solutions

Hyper Recruitment Solutions

Hyper Recruitment Solutions is a specialist and highly compliant recruitment consultancy dedicated to the Science and Technology sectors.

Caliber Security Partners

Caliber Security Partners

Caliber Security Partners is a full-service information security company, with a wide range of security services for clients with varying levels of security maturity.

Infrascale

Infrascale

Infrascale specialise in providing cloud backup and disaster recovery services.

Logsign

Logsign

Logsign is a Security Orchestration, Automation and Response (SOAR) platform with next-gen Security Information and Event Management (SIEM) solution.

Calian Group

Calian Group

Calian is a diverse Canadian company offering professional services in areas including IT Consulting, Cyber Security and IT Products.

Securitybulls

Securitybulls

Securitybulls is an information security firm offering an encyclopedic penetration testing & IT security assessment service for your organization.

Gulf Computer Services Co (GCSC)

Gulf Computer Services Co (GCSC)

Gulf Computer Services is a major player in the field of networking & Communication solutions for emerging industries such as Internet Services and Information Technology in Saudi Arabia.

Mitre ATT&CK

Mitre ATT&CK

MITRE ATT&CK™ is a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations.

PROOF

PROOF

PROOF is a Brazilian leader in cybersecurity. Our goal is to assist our Customers in managing security efficiently and in tune with business needs.

Extreme Protocol Solutions (EPS)

Extreme Protocol Solutions (EPS)

Extreme Protocol Solutions is an industry leading Data Sanitization Software, Hardware and Onsite Service Provider.

Norwest Venture Partners (NVP)

Norwest Venture Partners (NVP)

Norwest Venture Partners offer entrepreneurs a broad range of services to help them build their businesses at every stage of growth. Key sectors include AI, Infrastructure, SaaS and Security.

InsightCyber

InsightCyber

InsightCyber is on a mission to keep the world’s critical infrastructure, supply chains, and manufacturing operations cyber-safe, helping to prevent attacks that can have catastrophic impacts.

WebOrion

WebOrion

WebOrion is an All-in-One Web Security & Performance Suite. Fortify, accelerate and monitor your website today.

Zemana

Zemana

Zemana provides innovative cyber-security solutions to deal with complex malicious software and other cyber threats.

SecureLayer7

SecureLayer7

SecureLayer7 is an international provider of integrated business information security solutions with an innovative approach to IT security.

Robo Shadow

Robo Shadow

Robo Shadow are trying to bridge the gap between the top tier organisations that can afford everything and everyone else who has to “Make it up as they go along” when it comes to Cyber.