Cybersecurity Is A Job for CEOs, Not Just The IT Team

More data was lost or stolen in the first half of last year than in the whole of 2016, with the number of businesses that have been hit by a breach reaching an all-time high. Data breaches are no longer the exception, but the norm.

Hackers’ abilities to bypass digital defences are constantly improving, as are both the number and sophistication of these crippling attacks. However, regardless of the changing landscape, the enormity of the risk to businesses due to poor cyber security management has yet to properly hit home.

In the last 12 months alone, the picture has worsened, with a list of big brands falling foul to the devastating effects of weak digital security practices.

Second-hand electronic goods retailer CeX, telecommunications conglomerate Verizon, and consumer credit reporting agency Equifax are but a handful of names that comprise an unenviable group of businesses. What’s more, so severe was the fallout from the Equifax breach that the company’s chairman and chief executive resigned shortly afterwards.

With cyber-attacks now posing real dangers to a company’s bottom line, corporate reputation, customer retention, and also employee confidence, threats emanating from technology can no longer be relegated to the remit of the IT department. They must be dealt with first-hand in the boardroom.

Rather worryingly, the Cyber Governance Health Check (an annual survey conducted by the UK government) revealed that, of the 105 businesses questioned from the FTSE 350, one in 10 have no plan in place to cope with hacking, despite over half of respondents also citing it as one of the primary threats to their business.

In an effort to streamline operations and boost revenue in certain areas, advancements in technologies like the Internet of Things, artificial intelligence, big data and most recently cryptocurrency have started to force the hands of businesses.
As a result, our own research has revealed that nine in 10 organisations around the world are now storing more sensitive data in these emerging technology environments than ever before.

This in turn means that the exploitable opportunities for hackers and the scale of companies’ digital vulnerabilities are at their peak.

If companies are going to use these new technologies, they need to build in data protection right from the start. Effective data security means having the correct digital deterrents in place, with some constantly running through automated processes. This will reduce the level of complexity for businesses, while, staff can continue their day-to-day roles, knowing that their organisation is being protected around the clock.

Instead of viewing cyber security as daunting or complex, or as an added extra, companies should instead embrace the range of options available to them and ensure it remains a key part of their core business model, and a factor in any new technological developments.

Interestingly, we also discovered that, with impending EU-wide regulations such as the General Data Protection Regulation and the Second Payment Services Directive looming large on the horizon, avoidance of financial penalties has now become the number one motivator for increased spending on security technology.

But protecting consumer data must be an ethical imperative, not merely a financial concern. Educating and upskilling executives is nothing short of crucial in the digital age. And delaying the implementation of a robust data protection strategy simply cannot be overlooked when the stakes are so high.

With the endless list of competing priorities facing organisations, from the challenges of geopolitical and economic upheavals, to risk management, talent retention, and innovation, it can be daunting to assess just how harrowing the effects of a data breach could be. However, getting cyber security right means taking no half measures and cutting no corners.
Adapting to the new digital climate won’t be easy. Nor will tussling with the unprecedented level of technological change.
In order to progress successfully, business leaders must place renewed emphasis on long-term thinking, significant investment in the right areas, and more unified international cooperation to combat the harsh realities of today’s data threat landscape.

To protect companies’ most valued digital assets and keep up with the pace of technological change, greater investment in a highly-skilled, well-trained workforce will be nothing short of essential. Those business leaders who choose to give cyber security nothing more than a passing thought do so at their own peril.

City AM

You Might Also Read:

The GDPR Deadline Is Near & Business Is Not Ready:

Data Breaches Attack All Parts Of A Business:

Cyber Security Checklist For Management (£):

 

 

« Police Prepare for Cyber Attacks
FBI, CIA & NSA Officials Agree: Stay Away From Huawei Phones »

CyberSecurity Jobsite
Check Point

Directory of Suppliers

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Systancia

Systancia

Systancia offer solutions for the virtualization of applications and VDI, external access security, Privileged Access Management (PAM), Single Sign-On (SSO) and Identity and Access Management (IAM).

NATO Communications and Information Agency (NCIA)

NATO Communications and Information Agency (NCIA)

The NCIA Cyber Security Service Line is responsible for planning and executing all life cycle management activities for cyber security.

PakCERT

PakCERT

PakCERT is the national Computer Emergency Response Team for Pakistan.

Cipher Tooth

Cipher Tooth

CipherTooth is a superior system for delivering secure content over the Internet.

NAVEX Global

NAVEX Global

NAVEX Global’s compliance management system consolidates your entire GRC program onto a scalable cloud-based platform.

DeepCyber

DeepCyber

DeepCyber supports its customers, with an “intelligence-driven” approach, to improve their proactive detection and response "capability" of cyber threats.

Kindus

Kindus

Kindus is an IT security, assurance and cyber security risk management consultancy.

Transmit Security

Transmit Security

The Transmit Security Platform provides a solution for managing identity across applications while maintaining security and usability.

Help AG

Help AG

Help AG provides leading enterprise businesses and governments across the Middle East with strategic consultancy combined with tailored information security solutions and services.

Aceiss

Aceiss

Aceiss empowers access security, providing unprecedented visibility and insights into user access.

CloudWave

CloudWave

CloudWave, the expert in healthcare data security, provides cloud, cybersecurity, and managed services to healthcare organizations.

Heron Technology

Heron Technology

Heron Technology are a technology solutions consultancy with core competencies in the areas of Cyber Security and Digital Aviation.

MiC Talent Solutions

MiC Talent Solutions

MiC Talent Solutions provides recruiting, direct hire, augmented staff, and professional service contracting solutions for organizations searching for minority cybersecurity talent.

ECIT

ECIT

ECIT is your preferred provider of finance and IT services. We believe in the value of combining financial and IT services to streamline and improve the operation of your business.

ZainTech

ZainTech

Zaintech is a regional digital & ICT solutions provider offering comprehensive digital solutions and services to enterprise and government customers in the MENA region.

Cloud Native Computing Foundation (CNCF)

Cloud Native Computing Foundation (CNCF)

CNCF seeks to drive adoption of cloud native technologies by fostering and sustaining an ecosystem of open source, vendor-neutral projects.

International Maritime Cyber Security Organisation (IMCSO)

International Maritime Cyber Security Organisation (IMCSO)

The IMCSO mission is to be the standard in the maritime cyber security industry, a collective voice, working towards alignment and standardisation.

FSP

FSP

FSP is a leading consultancy specialising in Digital, Security and AI solutions. We navigate the complexities of data sensitivity, confidentiality, governance and compliance.